CVE-2026-11590

UNKNOWN 0.0

WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated SQL Injection via filter[elements] Array Keys

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not sanitize user-supplied array keys before using them in a SQL statement, allowing unauthenticated users to perform SQL injection attacks.

Vendor	unknown
Product	wp support plus responsive ticket system
Published	Jun 30, 2026

Stay Ahead of the Next One

Get instant alerts for unknown wp support plus responsive ticket system

Be the first to know when new unknown vulnerabilities affecting unknown wp support plus responsive ticket system are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Unknown / WP Support Plus Responsive Ticket System

0 ≤ 9.1.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wpscan.com: https://wpscan.com/vulnerability/117853ca-0fd3-4bfa-ad60-799eb5c77bdf/

Credits

Ayush Srivastava WPScan