cve/2021/CVE-2021-24839.md

### [CVE-2021-24839](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-24839)
![](https://img.shields.io/static/v1?label=Product&message=SupportCandy%20%E2%80%93%20Helpdesk%20%26%20Support%20Ticket%20System&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2.2.5%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-862%20Missing%20Authorization&color=brightgreen)

### Description

The SupportCandy WordPress plugin before 2.2.5 does not have authorisation and CSRF checks in its wpsc_tickets AJAX action, which could allow unauthenticated users to call it and delete arbitrary tickets via the set_delete_permanently_bulk_ticket setting_action. Other actions may be affected as well.

### POC

#### Reference
- https://wpscan.com/vulnerability/5e6e63c2-2675-4b8d-9b94-c16c525a1a0e

#### Github
- https://github.com/20142995/nuclei-templates