WP-Safety

Help Desk WP Security & Risk Analysis

wordpress.org/plugins/helpdeskwp

Help Desk and customer support.

0 active installs v1.2.0 PHP + WP 5.2+ Updated Jan 30, 2022
customer-supporthelpdesksupportsupport-ticketticket-system
63
C · Use Caution
CVEs total1
Unpatched1
Last CVEApr 19, 2023
Plugin page Download
Safety Verdict

Is Help Desk WP Safe to Use in 2026?

Use With Caution

Score 63/100

Help Desk WP has 1 unpatched vulnerability. Evaluate alternatives or apply available mitigations.

1 known CVE 1 unpatched Last CVE: Apr 19, 2023Updated 4yr ago
Risk Assessment

The helpdeskwp plugin v1.2.0 exhibits a generally good security posture with a strong emphasis on secure coding practices. The static analysis reveals a small attack surface with no unprotected entry points. The plugin effectively utilizes prepared statements for all SQL queries, handles output escaping for the vast majority of its outputs, and implements nonce and capability checks. The absence of critical or high severity taint analysis findings further reinforces this positive outlook. However, the presence of one unpatched high severity vulnerability from April 2023, specifically Cross-site Scripting (XSS), is a significant concern. This historical vulnerability, coupled with the fact that it remains unpatched, strongly indicates a potential for similar issues to exist or re-emerge if not actively maintained. While the current code analysis suggests a healthy codebase, the single, unaddressed historical vulnerability necessitates caution and highlights a critical area for improvement regarding ongoing security patching and maintenance.

Key Concerns

  • Unpatched high severity CVE
Vulnerabilities
1 published

Help Desk WP Security Vulnerabilities

CVEs by Year

1 CVE in 2023 · unpatched
2023
Patched Has unpatched

Severity Breakdown

High
1

1 total CVE

CVE-2023-1019high · 7.2Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Help Desk WP <= 1.2.0 - Authenticated (Editor+) Stored Cross-Site Scripting

Apr 19, 2023Unpatched
Version History

Help Desk WP Release Timeline

No version history available.
Code Analysis
Analyzed Apr 16, 2026

Help Desk WP Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
2 prepared
Unescaped Output
2
33 escaped
Nonce Checks
1
Capability Checks
9
File Operations
1
External Requests
0
Bundled Libraries
0

SQL Query Safety

100% prepared2 total queries

Output Escaping

94% escaped35 total outputs
Attack Surface

Help Desk WP Attack Surface

Entry Points3
Unprotected0

AJAX Handlers 2

authwp_ajax_helpdesk_registersrc/user-dashboard/register.php:109
noprivwp_ajax_helpdesk_registersrc/user-dashboard/register.php:110

Shortcodes 1

[helpdesk_support_portal] src/user-dashboard/user-dashboard.php:60
WordPress Hooks 41
actionrest_api_initsrc/API/Replies.php:199
actionrest_api_initsrc/API/Settings.php:250
actionrest_api_initsrc/API/Tickets.php:249
actionadmin_initsrc/admin/data/data.php:38
actionadmin_initsrc/admin/data/data.php:39
actionadmin_initsrc/admin/data/data.php:40
actioninitsrc/admin/post-type/post-type.php:75
actioninitsrc/admin/post-type/post-type.php:76
actioninitsrc/admin/post-type/post-type.php:77
actioninitsrc/admin/taxonomy/taxonomy.php:214
actioninitsrc/admin/taxonomy/taxonomy.php:215
actioninitsrc/admin/taxonomy/taxonomy.php:216
actioninitsrc/admin/taxonomy/taxonomy.php:217
actioninitsrc/admin/taxonomy/taxonomy.php:218
actioninitsrc/admin/taxonomy/taxonomy.php:219
actioninitsrc/admin/taxonomy/taxonomy.php:220
actionadmin_menusrc/agent-dashboard/agent-dashboard.php:85
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:86
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:87
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:88
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:89
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:90
actionrest_api_initsrc/agent-dashboard/agent-dashboard.php:91
actionadmin_enqueue_scriptssrc/agent-dashboard/agent-dashboard.php:92
actioninitsrc/agent-dashboard/agent-dashboard.php:93
actioninitsrc/agent-dashboard/agent-dashboard.php:94
actioninitsrc/agent-dashboard/agent-dashboard.php:95
actioninitsrc/agent-dashboard/agent-dashboard.php:96
actionhelpdesk_docs_searchsrc/docs/docs.php:46
actionhelpdesk_docs_categoriessrc/docs/docs.php:47
actionhelpdesk_before_archive_docssrc/docs/docs.php:48
actionhelpdesk_after_archive_docssrc/docs/docs.php:49
actionhelpdesk_docs_tax_contentsrc/docs/docs.php:50
actionhelpdesk_docs_breadcrumbssrc/docs/docs.php:51
actionhelpdesk_single_docs_contentsrc/docs/docs.php:52
actionwp_enqueue_scriptssrc/docs/docs.php:53
actiondocs_category_edit_form_fieldssrc/docs/image-meta/category-image-meta.php:49
actionadmin_enqueue_scriptssrc/docs/image-meta/category-image-meta.php:50
actionedited_docs_categorysrc/docs/image-meta/category-image-meta.php:51
actiontemplate_includesrc/template/template.php:46
actionwp_enqueue_scriptssrc/user-dashboard/user-dashboard.php:61
Maintenance & Trust

Help Desk WP Maintenance & Trust

Maintenance Signals

WordPress version tested5.9.13
Last updatedJan 30, 2022
PHP min version
Downloads1K

Community Trust

Rating0/100
Number of ratings0
Active installs0
Alternatives

Help Desk WP Alternatives

Customer Support Ticket System & Helpdesk Plugin for WordPress

Customer Support Ticket System & Helpdesk Plugin for WordPress

wp-ticket

A
91

Create a support ticket system in WordPress. Manage customer inquiries, agents, priorities, and more with this flexible helpdesk plugin.

500 7 CVEs
NexlifyDesk

NexlifyDesk

nexlifydesk

A
100

Enterprise-grade WordPress helpdesk solution with intelligent ticket management, email piping, agent workflows, and WooCommerce integration.

0 No CVEs
Fluent Support – Helpdesk & Customer Support Ticket System

Fluent Support – Helpdesk & Customer Support Ticket System

fluent-support

A
89

Feature Rich and Super Fast Support and Customer Ticketing System for WordPress.

10K 7 CVEs
Awesome Support – WordPress HelpDesk & Support Plugin

Awesome Support – WordPress HelpDesk & Support Plugin

awesome-support

A
88

The most versatile and feature-rich help desk and support plugin for WordPress. Provide awesome support directly from your WordPress site.

7K 26 CVEs
Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin

Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin

majestic-support

B
82

Majestic Support for WordPress is a top-tier ticket system that can significantly enhance your customers' support experience.

3K 8 CVEs
Developer Profile

Help Desk WP Developer Profile

helpdeskwp

1 plugin · 0 total installs

68
trust score
Avg Security Score
63/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Help Desk WP

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/helpdeskwp/assets/js/chunk-vendors.js/wp-content/plugins/helpdeskwp/assets/js/helpdeskwp.js/wp-content/plugins/helpdeskwp/assets/css/helpdeskwp.css
Script Paths
/wp-content/plugins/helpdeskwp/assets/js/chunk-vendors.js/wp-content/plugins/helpdeskwp/assets/js/helpdeskwp.js
Version Parameters
helpdeskwp/assets/js/chunk-vendors.js?ver=helpdeskwp/assets/js/helpdeskwp.js?ver=helpdeskwp/assets/css/helpdeskwp.css?ver=

HTML / DOM Fingerprints

CSS Classes
helpdesk-agent-dashboard
Data Attributes
id="helpdesk-agent-dashboard"
JS Globals
helpdeskwphelpdeskwp_vue_appHelpDeskWP
REST Endpoints
/wp-json/helpdeskwp/v1/tickets/wp-json/helpdeskwp/v1/settings/wp-json/helpdeskwp/v1/agent
Shortcode Output
[helpdesk_form][helpdesk_ticket_list][helpdesk_agent_dashboard]
FAQ

Frequently Asked Questions about Help Desk WP