CVE-2025-10054 | ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin Role eh_crm_remove_agent authorization

A vulnerability, which was classified as problematic, has been found in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing System Plugin up to 3.3.1 on WordPress. This affects the function eh_crm_remove_agent of the component Role Handler. Performing manipulation results in missing authorization.

This vulnerability is cataloged as CVE-2025-10054. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More