WP-Safety

ELEX WordPress HelpDesk & Customer Ticketing System Security & Risk Analysis

wordpress.org/plugins/elex-helpdesk-customer-support-ticket-system

ELEX WordPress HelpDesk & Customer Ticketing System offers top-notch features for the best customer support experience.

300 active installs v3.3.6 PHP 7.1.8+ WP 3.0.1+ Updated Jan 29, 2026
helpdesksupport-ticketticket-systemticketswoocommerce
82
B · Generally Safe
CVEs total13
Unpatched0
Last CVEFeb 4, 2026
Plugin page Download
Safety Verdict

Is ELEX WordPress HelpDesk & Customer Ticketing System Safe to Use in 2026?

Mostly Safe

Score 82/100

ELEX WordPress HelpDesk & Customer Ticketing System is generally safe to use. 13 past CVEs were resolved. Keep it updated.

13 known CVEsLast CVE: Feb 4, 2026Updated 2mo ago
Risk Assessment

The plugin "elex-helpdesk-customer-support-ticket-system" version 3.3.6 presents a mixed security posture. On the positive side, the plugin demonstrates a strong commitment to secure coding practices, with 90% of SQL queries utilizing prepared statements and 90% of output properly escaped. It also includes a substantial number of nonce and capability checks, indicating an awareness of WordPress security mechanisms. However, the large number of unprotected AJAX handlers (112 out of 119) and one unprotected REST API route represent a significant attack surface that could be exploited by unauthenticated users.

The static analysis also revealed the presence of dangerous functions, specifically `unserialize`, which can be a vector for deserialization vulnerabilities if user-controlled data is unserialized without proper sanitization. The taint analysis further highlights concerns, with 12 out of 25 analyzed flows having unsanitized paths and 7 of these being classified as high severity. This suggests potential vulnerabilities where user input is not adequately validated or neutralized before being used in sensitive operations.

The plugin's vulnerability history, with 13 known CVEs including 1 critical and 3 high severity, is a major red flag. While there are currently no unpatched CVEs, the recurring nature of critical and high-severity vulnerabilities, especially those related to Cross-Site Scripting, Improper Privilege Management, and Authorization Bypass, indicates a persistent pattern of security weaknesses. The most recent vulnerability being in 2026 is also concerning, suggesting that past vulnerabilities have been significant enough to require substantial security fixes. In conclusion, while the plugin employs some good security practices, the large unprotected attack surface, potential for deserialization vulnerabilities, high taint flow severity, and a history of critical and high-severity CVEs necessitate caution and prompt review of its security controls.

Key Concerns

  • Large attack surface without auth checks
  • Unprotected REST API routes
  • Presence of dangerous unserialize function
  • High severity taint flows
  • History of critical CVEs
  • History of high severity CVEs
  • Bundled outdated jQuery library
Vulnerabilities
13

ELEX WordPress HelpDesk & Customer Ticketing System Security Vulnerabilities

CVEs by Year

11 CVEs in 2025
2025
2 CVEs in 2026
2026
Patched Has unpatched

Severity Breakdown

Critical
1
High
3
Medium
9

13 total CVEs

CVE-2025-14079medium · 5.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.5 - Missing Authorization to Authenticated (Subscriber+) Settings Update

Feb 4, 2026 Patched in 3.3.6 (1d)
CVE-2025-68837medium · 4.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.5 - Missing Authorization

Jan 27, 2026 Patched in 3.3.6 (7d)
CVE-2025-9343high · 7.2Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.4 - Unauthenticated Stored Cross-Site Scripting

Dec 20, 2025 Patched in 3.3.5 (1d)
CVE-2025-13534medium · 6.3Improper Privilege Management

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.2 - Authenticated (Contributor+) Privilege Escalation via eh_crm_edit_agent AJAX Action

Dec 1, 2025 Patched in 3.3.3 (1d)
CVE-2025-11456critical · 9.8Unrestricted Upload of File with Dangerous Type

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Unauthenticated Arbitrary File Upload

Nov 20, 2025 Patched in 3.3.2 (1d)
CVE-2025-12023medium · 4.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Ticket Restore

Nov 20, 2025 Patched in 3.3.2 (1d)
CVE-2025-12085medium · 4.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Trash Empty

Nov 20, 2025 Patched in 3.3.2 (1d)
CVE-2025-12022medium · 4.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Trash Restore

Nov 20, 2025 Patched in 3.3.2 (1d)
CVE-2025-12169medium · 4.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.0 - Missing Authorization to Authenitcated (Subscriber+) to Scheduled Trigger Deletion

Nov 20, 2025 Patched in 3.3.1 (1d)
CVE-2025-10054medium · 5.3Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Role Removal

Nov 20, 2025 Patched in 3.3.2 (2d)
CVE-2025-10039medium · 4.3Authorization Bypass Through User-Controlled Key

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.2.9 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'eh_crm_ticket_single_view_client'

Nov 20, 2025 Patched in 3.3.0 (2d)
CVE-2025-47658high · 8.8Unrestricted Upload of File with Dangerous Type

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.2.9 - Authenticated (Subscriber+) Arbitrary File Upload

May 8, 2025 Patched in 3.3.0 (198d)
CVE-2024-12171high · 8.8Missing Authorization

ELEX WordPress HelpDesk & Customer Ticketing System <= 3.2.6 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation

Jan 31, 2025 Patched in 3.2.7 (1d)
Code Analysis
Analyzed Mar 16, 2026

ELEX WordPress HelpDesk & Customer Ticketing System Code Analysis

Dangerous Functions
20
Raw SQL Queries
23
218 prepared
Unescaped Output
276
2388 escaped
Nonce Checks
99
Capability Checks
137
File Operations
20
External Requests
9
Bundled Libraries
3

Dangerous Functions Found

unserializereturn is_serialized( $data[0]['meta_value'] ) ? unserialize( $data[0]['meta_value'] ) : $data[0]['mincludes\class-crm-public-functions.php:795
unserialize$retrived[ $data[ $i ]['meta_key'] ] = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $daincludes\class-crm-public-functions.php:798
unserializereturn is_serialized( $retrived ) ? unserialize( $retrived ) : $retrived;includes\class-crm-public-functions.php:800
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:902
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:962
unserializeif ( in_array( $get_for, unserialize( $tickets['meta_value'] ) ) ) {includes\class-crm-public-functions.php:1517
unserialize$meta_value = unserialize( $data[ $i ]['meta_value'] );includes\class-crm-public-functions.php:1739
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2045
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2073
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2120
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2180
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2200
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2215
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unseriaincludes\class-crm-public-functions.php:2740
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2755
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2775
unserialize$meta_value = is_serialized( $data[ $i ]['meta_value'] ) ? unserialize( $data[ $i ]['meta_value'] ) includes\class-crm-public-functions.php:2836
unserializereturn unserialize( $access->meta_value );includes\Tickets\TicketArchiveRepository.php:483
unserializereturn unserialize( $this->value );includes\Tickets\TicketField.php:65
unserializereturn implode( ', ', Arr::only( $field_values, unserialize( $this->value ) ) );includes\Tickets\TicketField.php:76

Bundled Libraries

Select2jQuery2.2.4Guzzle

SQL Query Safety

90% prepared241 total queries

Output Escaping

90% escaped2664 total outputs
Data Flows
12 unsanitized

Data Flow Analysis

25 flows12 with unsanitized paths
eh_crm_check_ticket_request (includes\class-crm-ajax-functions-three.php:2432)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
113 unprotected

ELEX WordPress HelpDesk & Customer Ticketing System Attack Surface

Entry Points123
Unprotected113

AJAX Handlers 119

authwp_ajax_eh_crm_search_postincludes\class-crm-init-handler.php:14
noprivwp_ajax_eh_crm_search_postincludes\class-crm-init-handler.php:15
authwp_ajax_eh_crm_search_tagsincludes\class-crm-init-handler.php:16
authwp_ajax_eh_crm_ticket_generalincludes\class-crm-init-handler.php:17
authwp_ajax_eh_crm_ticket_appearanceincludes\class-crm-init-handler.php:18
authwp_ajax_eh_crm_settings_initiate_ticketincludes\class-crm-init-handler.php:19
authwp_ajax_eh_crm_settings_empty_trashincludes\class-crm-init-handler.php:20
authwp_ajax_eh_crm_settings_empty_scheduled_actionsincludes\class-crm-init-handler.php:21
authwp_ajax_eh_crm_settings_restore_trashincludes\class-crm-init-handler.php:22
authwp_ajax_eh_crm_refresh_tickets_countincludes\class-crm-init-handler.php:23
authwp_ajax_eh_crm_ticket_refresh_left_barincludes\class-crm-init-handler.php:24
authwp_ajax_eh_crm_ticket_refresh_right_barincludes\class-crm-init-handler.php:25
authwp_ajax_eh_crm_archive_single_ticketincludes\class-crm-init-handler.php:26
authwp_ajax_eh_crm_woocommerce_settingsincludes\class-crm-init-handler.php:27
authwp_ajax_eh_crm_ticket_fieldincludes\class-crm-init-handler.php:28
authwp_ajax_eh_crm_ticket_field_deleteincludes\class-crm-init-handler.php:29
authwp_ajax_eh_crm_ticket_field_activate_deactivateincludes\class-crm-init-handler.php:30
authwp_ajax_eh_crm_ticket_field_editincludes\class-crm-init-handler.php:31
authwp_ajax_eh_crm_ticket_labelincludes\class-crm-init-handler.php:32
authwp_ajax_eh_crm_ticket_label_deleteincludes\class-crm-init-handler.php:33
authwp_ajax_eh_crm_ticket_label_editincludes\class-crm-init-handler.php:34
authwp_ajax_eh_crm_ticket_tagincludes\class-crm-init-handler.php:35
authwp_ajax_eh_crm_ticket_tag_deleteincludes\class-crm-init-handler.php:36
authwp_ajax_eh_crm_ticket_tag_editincludes\class-crm-init-handler.php:37
authwp_ajax_eh_crm_ticket_viewincludes\class-crm-init-handler.php:38
authwp_ajax_eh_crm_ticket_view_editincludes\class-crm-init-handler.php:39
authwp_ajax_eh_crm_ticket_view_deleteincludes\class-crm-init-handler.php:40
authwp_ajax_eh_crm_ticket_view_activate_deactivateincludes\class-crm-init-handler.php:41
authwp_ajax_eh_crm_triggerincludes\class-crm-init-handler.php:42
authwp_ajax_eh_crm_ticket_trigger_deleteincludes\class-crm-init-handler.php:43
authwp_ajax_eh_crm_ticket_trigger_activate_deactivateincludes\class-crm-init-handler.php:44
authwp_ajax_eh_crm_trigger_editincludes\class-crm-init-handler.php:45
authwp_ajax_eh_crm_agent_addincludes\class-crm-init-handler.php:46
authwp_ajax_eh_crm_agent_add_userincludes\class-crm-init-handler.php:47
authwp_ajax_eh_crm_edit_agent_htmlincludes\class-crm-init-handler.php:48
authwp_ajax_eh_crm_edit_agentincludes\class-crm-init-handler.php:49
authwp_ajax_eh_crm_remove_agentincludes\class-crm-init-handler.php:50
authwp_ajax_eh_crm_new_ticket_postincludes\class-crm-init-handler.php:51
noprivwp_ajax_eh_crm_new_ticket_postincludes\class-crm-init-handler.php:52
authwp_ajax_eh_crm_new_ticket_formincludes\class-crm-init-handler.php:53
noprivwp_ajax_eh_crm_new_ticket_formincludes\class-crm-init-handler.php:54
authwp_ajax_eh_crm_ticket_single_viewincludes\class-crm-init-handler.php:55
authwp_ajax_eh_crm_ticket_single_save_propsincludes\class-crm-init-handler.php:56
authwp_ajax_eh_crm_ticket_single_deleteincludes\class-crm-init-handler.php:57
authwp_ajax_eh_crm_ticket_multiple_deleteincludes\class-crm-init-handler.php:58
authwp_ajax_eh_crm_ticket_reply_agentincludes\class-crm-init-handler.php:59
authwp_ajax_eh_crm_ticket_single_ticket_actionincludes\class-crm-init-handler.php:60
authwp_ajax_eh_crm_ticket_multiple_ticket_actionincludes\class-crm-init-handler.php:61
authwp_ajax_eh_crm_ticket_searchincludes\class-crm-init-handler.php:62
authwp_ajax_eh_crm_ticket_add_newincludes\class-crm-init-handler.php:63
authwp_ajax_eh_crm_ticket_new_submitincludes\class-crm-init-handler.php:64
authwp_ajax_eh_crm_check_ticket_requestincludes\class-crm-init-handler.php:65
noprivwp_ajax_eh_crm_check_ticket_requestincludes\class-crm-init-handler.php:66
authwp_ajax_eh_crm_ticket_single_view_clientincludes\class-crm-init-handler.php:67
authwp_ajax_eh_crm_ticket_reply_raiserincludes\class-crm-init-handler.php:68
authwp_ajax_eh_crm_ticket_client_section_loadincludes\class-crm-init-handler.php:69
authwp_ajax_eh_crm_activate_oauthincludes\class-crm-init-handler.php:70
authwp_ajax_eh_crm_email_block_filterincludes\class-crm-init-handler.php:71
authwp_ajax_eh_crm_subject_block_filterincludes\class-crm-init-handler.php:72
authwp_ajax_eh_crm_email_block_deleteincludes\class-crm-init-handler.php:73
authwp_ajax_eh_crm_subject_block_deleteincludes\class-crm-init-handler.php:74
authwp_ajax_eh_crm_deactivate_oauthincludes\class-crm-init-handler.php:75
authwp_ajax_eh_crm_activate_email_protocolincludes\class-crm-init-handler.php:76
authwp_ajax_eh_crm_deactivate_email_protocolincludes\class-crm-init-handler.php:77
authwp_ajax_eh_crm_email_support_saveincludes\class-crm-init-handler.php:78
authwp_ajax_eh_crm_backup_dataincludes\class-crm-init-handler.php:79
authwp_ajax_eh_crm_restore_dataincludes\class-crm-init-handler.php:80
authwp_ajax_eh_crm_zendesk_pull_ticketsincludes\class-crm-init-handler.php:81
authwp_ajax_eh_crm_zendesk_stop_pull_ticketsincludes\class-crm-init-handler.php:82
authwp_ajax_eh_crm_zendesk_save_dataincludes\class-crm-init-handler.php:83
authwp_ajax_eh_crm_live_logincludes\class-crm-init-handler.php:84
authwp_ajax_eh_crm_survey_ticket_formincludes\class-crm-init-handler.php:85
noprivwp_ajax_eh_crm_survey_ticket_formincludes\class-crm-init-handler.php:86
authwp_ajax_eh_crm_woo_report_productsincludes\class-crm-init-handler.php:87
authwp_ajax_eh_crm_woo_report_categoryincludes\class-crm-init-handler.php:88
authwp_ajax_eh_crm_ticket_new_templateincludes\class-crm-init-handler.php:89
authwp_ajax_eh_crm_ticket_template_deleteincludes\class-crm-init-handler.php:90
authwp_ajax_eh_crm_ticket_template_searchincludes\class-crm-init-handler.php:91
authwp_ajax_eh_crm_ticket_template_search_singleincludes\class-crm-init-handler.php:92
authwp_ajax_eh_crm_ticket_update_templateincludes\class-crm-init-handler.php:93
authwp_ajax_eh_crm_ticket_preview_templateincludes\class-crm-init-handler.php:94
authwp_ajax_eh_crm_ticket_multiple_template_sendincludes\class-crm-init-handler.php:95
authwp_ajax_eh_crm_ticket_edit_template_contentincludes\class-crm-init-handler.php:96
authwp_ajax_eh_crm_get_settingsmeta_from_slugincludes\class-crm-init-handler.php:97
authwp_ajax_eh_crm_ticket_single_ticket_assigneeincludes\class-crm-init-handler.php:100
authwp_ajax_eh_crm_bulk_editincludes\class-crm-init-handler.php:101
authwp_ajax_eh_crm_bulk_edit_saveincludes\class-crm-init-handler.php:102
authwp_ajax_eh_crm_ticket_change_labelincludes\class-crm-init-handler.php:103
authwp_ajax_eh_crm_verify_merge_ticketsincludes\class-crm-init-handler.php:104
authwp_ajax_eh_crm_confirm_merge_ticketsincludes\class-crm-init-handler.php:105
authwp_ajax_eh_crm_ticket_close_check_requestincludes\class-crm-init-handler.php:106
authwp_ajax_eh_crm_export_ticket_dataincludes\class-crm-init-handler.php:107
authwp_ajax_eh_crm_arrange_ticket_columnsincludes\class-crm-init-handler.php:108
authwp_ajax_eh_crm_activate_deactivate_ticket_columnsincludes\class-crm-init-handler.php:109
authwp_ajax_eh_crm_refresh_tickets_count_archiveincludes\class-crm-init-handler.php:111
authwp_ajax_eh_crm_ticket_single_view_archiveincludes\class-crm-init-handler.php:112
authwp_ajax_eh_crm_ticket_refresh_left_bar_archiveincludes\class-crm-init-handler.php:113
authwp_ajax_eh_crm_ticket_refresh_right_bar_archiveincludes\class-crm-init-handler.php:114
authwp_ajax_eh_crm_ticket_search_archiveincludes\class-crm-init-handler.php:115
authwp_ajax_eh_crm_archive_ticket_dataincludes\class-crm-init-handler.php:116
authwp_ajax_eh_crm_archive_ticket_data_restoredincludes\class-crm-init-handler.php:117
authwp_ajax_eh_crm_ticket_multiple_unarchiveincludes\class-crm-init-handler.php:118
authwp_ajax_eh_crm_get_woo_order_idincludes\class-crm-init-handler.php:166
authwp_ajax_eh_crm_woo_product_fetchincludes\class-crm-init-handler.php:167
authwp_ajax_eh_crm_woo_category_fetchincludes\class-crm-init-handler.php:168
authwp_ajax_eh_crm_woo_tags_fetchincludes\class-crm-init-handler.php:169
authwp_ajax_eh_crm_woo_vendors_fetchincludes\class-crm-init-handler.php:170
authwp_ajax_eh_crm_get_edd_productsincludes\class-crm-init-handler.php:173
authwp_ajax_wsdesk_submit-uninstall-reasonincludes\class-crm-init-handler.php:183
authwp_ajax_eh_crm_v2_ticketsincludes\class-crm-init-handler.php:277
authwp_ajax_eh_crm_v2_tickets_countincludes\class-crm-init-handler.php:278
authwp_ajax_eh_crm_v2_archive_ticketsincludes\class-crm-init-handler.php:280
authwp_ajax_wsdesk_avg_time_taken_to_resolveincludes\Tickets\Reports.php:18
authwp_ajax_wsdesk_no_of_tickets_per_agent_per_dayincludes\Tickets\Reports.php:19
authwp_ajax_wsdesk_no_of_replies_by_agent_per_dayincludes\Tickets\Reports.php:20
authwp_ajax_wsdesk_no_of_tickets_per_statusincludes\Tickets\Reports.php:21
authwp_ajax_wsdesk_no_of_tickets_per_tagincludes\Tickets\Reports.php:22
authwp_ajax_wsdesk_agent_satisfication_scoreincludes\Tickets\Reports.php:23
authwp_ajax_wsdesk_agent_avg_reply_timeincludes\Tickets\Reports.php:24

REST API Routes 1

POST/wp-json/wsdesk/v1wsdesk_api_create_ticketincludes\class-crm-init-handler.php:152

Shortcodes 3

[wsdesk_support] includes\class-crm-init-handler.php:177
[wsdesk_satisfaction] includes\class-crm-init-handler.php:178
[wsdesk_table_loader] includes\class-crm-init-handler.php:283
WordPress Hooks 33
actionadmin_initelex-helpdesk-customer-support-ticket-system.php:124
filterplugin_row_metaelex-helpdesk-customer-support-ticket-system.php:128
actionplugins_loadedelex-helpdesk-customer-support-ticket-system.php:129
actioninitelex-helpdesk-customer-support-ticket-system.php:130
actioninitelex-helpdesk-customer-support-ticket-system.php:131
filterwoocommerce_login_redirectelex-helpdesk-customer-support-ticket-system.php:144
actioninitelex-helpdesk-customer-support-ticket-system.php:311
actioninitelex-helpdesk-customer-support-ticket-system.php:312
actionadmin_bar_menuelex-helpdesk-customer-support-ticket-system.php:351
actionwp_enqueue_scriptselex-helpdesk-customer-support-ticket-system.php:364
filterupload_dirincludes\class-crm-ajax-functions-three.php:1429
filterwp_mail_fromincludes\class-crm-ajax-functions.php:1221
filterwp_mail_from_nameincludes\class-crm-ajax-functions.php:1227
actioninitincludes\class-crm-cron-setup.php:13
filtercron_schedulesincludes\class-crm-cron-setup.php:14
actioncrm_email_crawlerincludes\class-crm-cron-setup.php:15
actionadmin_menuincludes\class-crm-init-handler.php:12
actionadmin_initincludes\class-crm-init-handler.php:13
actionrest_api_initincludes\class-crm-init-handler.php:149
actionwp_enqueue_scriptsincludes\class-crm-init-handler.php:180
actionphpmailer_initincludes\class-crm-init-handler.php:181
actionadmin_footerincludes\class-crm-init-handler.php:182
actionwp_logoutincludes\class-crm-init-handler.php:191
filterwoocommerce_account_menu_itemsincludes\class-crm-init-handler.php:204
actionwoocommerce_account_wsdesk_my_tickets_endpointincludes\class-crm-init-handler.php:222
actionwoocommerce_account_wsdesk_support_endpointincludes\class-crm-init-handler.php:230
actionwsdesk_on_add_update_ticket_metaincludes\Tickets\Reports.php:27
actionadmin_noticesreview_and_troubleshoot_notify\review-and-troubleshoot-notify-class.php:20
actionadmin_initreview_and_troubleshoot_notify\review-and-troubleshoot-notify-class.php:21
actionadmin_menuviews\tickets\wsdesk_print.php:10
actionadmin_initviews\tickets\wsdesk_print.php:11
actionadmin_menuviews\welcome\welcome.php:11
actionadmin_initviews\welcome\welcome.php:12

Scheduled Events 3

start_scheduled_trigger_cron
crm_email_crawler
start_scheduled_trigger_cron
Maintenance & Trust

ELEX WordPress HelpDesk & Customer Ticketing System Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedJan 29, 2026
PHP min version7.1.8
Downloads23K

Community Trust

Rating78/100
Number of ratings7
Active installs300
Alternatives

ELEX WordPress HelpDesk & Customer Ticketing System Alternatives

Awesome Support – WordPress HelpDesk & Support Plugin

Awesome Support – WordPress HelpDesk & Support Plugin

awesome-support

A
88

The most versatile and feature-rich help desk and support plugin for WordPress. Provide awesome support directly from your WordPress site.

7K 24 CVEs
Chimney Rock Support Tickets

Chimney Rock Support Tickets

chimney-rock-support-tickets

A
85

Create and manage support tickets for your customers or subscribers with ease.

0 No CVEs
Nirweb support

Nirweb support

nirweb-support

C
58

NirWeb support is a great help desk and support plugin for WordPress with full support of WooCommerce

1K 1 unpatched
Customer Support Ticket System & Helpdesk Plugin for WordPress

Customer Support Ticket System & Helpdesk Plugin for WordPress

wp-ticket

A
91

Create a support ticket system in WordPress. Manage customer inquiries, agents, priorities, and more with this flexible helpdesk plugin.

500 7 CVEs
Helpdesk Support Ticket System for WooCommerce

Helpdesk Support Ticket System for WooCommerce

support-ticket-system-for-woocommerce

B
70

WordPress ticket system - Manage customer queries and issues on your WordPress eShop with helpdesk WooCommerce support ticket system

200 1 unpatched
Developer Profile

ELEX WordPress HelpDesk & Customer Ticketing System Developer Profile

ELEXtensions

22 plugins · 28K total installs

87
trust score
Avg Security Score
98/100
Avg Patch Time
53 days
View full developer profile
Detection Fingerprints

How We Detect ELEX WordPress HelpDesk & Customer Ticketing System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/css/admin-style.css/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/css/wsdesk-frontend.css/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/css/wsdesk-woo-frontend.css/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/css/wsdesk-woo-frontend.css?ver=1.0/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/admin-script.js/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/wsdesk-frontend.js/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/wsdesk-frontend.js?ver=1.0/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/wsdesk-frontend.js?ver=1.1
Script Paths
/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/admin-script.js/wp-content/plugins/elex-helpdesk-customer-support-ticket-system/assets/js/wsdesk-frontend.js
Version Parameters
elex-helpdesk-customer-support-ticket-system/assets/css/admin-style.css?ver=elex-helpdesk-customer-support-ticket-system/assets/css/wsdesk-frontend.css?ver=elex-helpdesk-customer-support-ticket-system/assets/css/wsdesk-woo-frontend.css?ver=elex-helpdesk-customer-support-ticket-system/assets/js/admin-script.js?ver=elex-helpdesk-customer-support-ticket-system/assets/js/wsdesk-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
wsdesk-wrap-divwsdesk-widget-title
HTML Comments
<!-- wsdesk_helpdesk_shortcode -->
Data Attributes
data-wsdesk-shortcode
JS Globals
wsdesk_frontend_objwsdesk_frontend_param
REST Endpoints
/wp-json/wsdesk/v1/attachment/wp-json/wsdesk/v1/ticket/wp-json/wsdesk/v1/comment
Shortcode Output
[wsdesk_helpdesk_form][wsdesk_helpdesk_list][wsdesk_helpdesk_view]
FAQ

Frequently Asked Questions about ELEX WordPress HelpDesk & Customer Ticketing System