WP-Safety

Orbisius Support Tickets Security & Risk Analysis

wordpress.org/plugins/orbisius-support-tickets

Minimalistic support ticket system that enables you to start providing awesome support in 2 minutes.

10 active installs v1.0.3 PHP 5.2.4+ WP 4.0+ Updated Feb 1, 2019
helporbisiussupporttickettickets
85
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Orbisius Support Tickets Safe to Use in 2026?

Generally Safe

Score 85/100

Orbisius Support Tickets has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7yr ago
Risk Assessment

The "orbisius-support-tickets" plugin version 1.0.3 presents a mixed security profile. On the positive side, it demonstrates good practices by exclusively using prepared statements for SQL queries and includes a nonce check and capability checks, indicating an awareness of WordPress security fundamentals. The absence of known CVEs and vulnerabilities in its history is also a strong indicator of a well-maintained and secure codebase. However, the static analysis reveals some significant concerns. The presence of the `shell_exec` function, a potentially dangerous function, without explicit taint analysis data to confirm its safe usage, poses a risk. Furthermore, a concerningly low percentage of output escaping (41%) suggests a high likelihood of cross-site scripting (XSS) vulnerabilities, especially given the 5 identified shortcodes which are common entry points for such attacks. The limited taint analysis data also means we cannot definitively rule out potential vulnerabilities in unsanitized paths.

Key Concerns

  • Presence of dangerous function shell_exec
  • Low output escaping percentage (41%)
  • Limited taint analysis data
Vulnerabilities
None known

Orbisius Support Tickets Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Orbisius Support Tickets Code Analysis

Dangerous Functions
1
Raw SQL Queries
0
0 prepared
Unescaped Output
48
34 escaped
Nonce Checks
1
Capability Checks
2
File Operations
0
External Requests
0
Bundled Libraries
1

Dangerous Functions Found

shell_exec$host = shell_exec('hostname');modules\core\notifications.php:247

Bundled Libraries

jQuery

Output Escaping

41% escaped82 total outputs
Attack Surface

Orbisius Support Tickets Attack Surface

Entry Points5
Unprotected0

Shortcodes 5

[orbisius_support_tickets_field] modules\core\shortcodes.php:16
[orbisius_support_tickets_view_ticket] modules\core\shortcodes.php:17
[orbisius_support_tickets_list_tickets] modules\core\shortcodes.php:18
[orbisius_support_tickets_submit_ticket] modules\core\shortcodes.php:19
[orbisius_support_tickets_generate_page_link] modules\core\shortcodes.php:20
WordPress Hooks 34
actioninitmodules\core\admin.php:5
actioninitmodules\core\admin.php:6
actionadmin_menumodules\core\admin.php:39
actionadmin_headmodules\core\admin.php:49
actionorbisius_support_tickets_admin_action_render_sidebarmodules\core\admin.php:57
actionorbisius_support_tickets_admin_action_render_sidebarmodules\core\admin.php:58
filterplugin_action_linksmodules\core\admin.php:198
actioninitmodules\core\assets.php:5
actionwp_enqueue_scriptsmodules\core\assets.php:9
actionadmin_enqueue_scriptsmodules\core\assets.php:10
actioninitmodules\core\cpt.php:4
actionorbisius_support_tickets_action_ticket_activitymodules\core\cpt.php:29
filteruser_has_capmodules\core\cpt.php:30
filtercomment_on_draftmodules\core\cpt.php:31
filtercomment_on_password_protectedmodules\core\cpt.php:32
filtercomment_form_defaultsmodules\core\cpt.php:34
filtercomment_form_default_fieldsmodules\core\cpt.php:35
filterpreprocess_commentmodules\core\cpt.php:36
filtercomment_flood_filtermodules\core\cpt.php:37
filternotify_moderatormodules\core\cpt.php:38
filterthe_contentmodules\core\cpt.php:319
actioncomment_postmodules\core\cpt.php:389
filtercomments_openmodules\core\cpt.php:556
filterpre_get_commentsmodules\core\cpt.php:690
actionplugins_loadedmodules\core\lang.php:4
actioninitmodules\core\notifications.php:5
actionorbisius_support_tickets_action_submit_ticket_after_insertmodules\core\notifications.php:10
actionorbisius_support_tickets_action_ticket_activitymodules\core\notifications.php:11
actioninitmodules\core\shortcodes.php:5
actionorbisius_support_tickets_view_ticket_after_ticket_content_wrappermodules\core\shortcodes.php:22
actionorbisius_support_tickets_view_ticket_metamodules\core\shortcodes.php:23
actionorbisius_support_tickets_view_ticket_metamodules\core\shortcodes.php:24
actioncomment_form_topmodules\core\shortcodes.php:629
actioninitmodules\core\test.php:12
Maintenance & Trust

Orbisius Support Tickets Maintenance & Trust

Maintenance Signals

WordPress version tested5.0.25
Last updatedFeb 1, 2019
PHP min version5.2.4
Downloads1K

Community Trust

Rating100/100
Number of ratings3
Active installs10
Alternatives

Orbisius Support Tickets Alternatives

Awesome Support – WordPress HelpDesk & Support Plugin

Awesome Support – WordPress HelpDesk & Support Plugin

awesome-support

A
88

The most versatile and feature-rich help desk and support plugin for WordPress. Provide awesome support directly from your WordPress site.

7K 24 CVEs
ELEX WordPress HelpDesk & Customer Ticketing System

ELEX WordPress HelpDesk & Customer Ticketing System

elex-helpdesk-customer-support-ticket-system

B
82

ELEX WordPress HelpDesk & Customer Ticketing System offers top-notch features for the best customer support experience.

300 13 CVEs
CodeBard Help Desk

CodeBard Help Desk

codebard-help-desk

D
49

Multi Language Professional Support Ticket System with Unlimited Users, Unlimited Tickets, Unlimited Departments, Agents and many features

10 2 unpatched
Support Tickets v2

Support Tickets v2

support-tickets-v2

A
100

With this plugin, you can manage a simple support ticket system on your WordPress site.

10 No CVEs
YAST : Yet Another Support Tool

YAST : Yet Another Support Tool

yast-yet-another-support-tool

A
85

Bug tickets management, throw classic site, multisite plateform

10 No CVEs
Developer Profile

Orbisius Support Tickets Developer Profile

Svetoslav Marinov

26 plugins · 12K total installs

71
trust score
Avg Security Score
88/100
Avg Patch Time
722 days
View full developer profile
Detection Fingerprints

How We Detect Orbisius Support Tickets

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/orbisius-support-tickets/assets/css/orbisius-support-tickets.css/wp-content/plugins/orbisius-support-tickets/shared/chosen_v1.7.0/chosen.jquery.min.js/wp-content/plugins/orbisius-support-tickets/shared/chosen_v1.7.0/chosen.min.css/wp-content/plugins/orbisius-support-tickets/shared/clipboard.js-2.0.1/dist/clipboard.min.js/wp-content/plugins/orbisius-support-tickets/assets/js/orbisius-support-tickets.js
Script Paths
/wp-content/plugins/orbisius-support-tickets/shared/chosen_v1.7.0/chosen.jquery.min.js/wp-content/plugins/orbisius-support-tickets/shared/clipboard.js-2.0.1/dist/clipboard.min.js/wp-content/plugins/orbisius-support-tickets/assets/js/orbisius-support-tickets.js
Version Parameters
orbisius-support-tickets/assets/css/orbisius-support-tickets.css?ver=orbisius-support-tickets/shared/chosen_v1.7.0/chosen.jquery.min.js?ver=orbisius-support-tickets/shared/chosen_v1.7.0/chosen.min.css?ver=orbisius-support-tickets/shared/clipboard.js-2.0.1/dist/clipboard.min.js?ver=orbisius-support-tickets/assets/js/orbisius-support-tickets.js?ver=

HTML / DOM Fingerprints

JS Globals
ORBISIUS_SUPPORT_TICKETS_BASE_PLUGINORBISIUS_SUPPORT_TICKETS_BASE_DIRORBISIUS_SUPPORT_TICKETS_BASE_URLORBISIUS_SUPPORT_TICKETS_DATA_DIRORBISIUS_SUPPORT_TICKETS_SHARE_DIRORBISIUS_SUPPORT_TICKETS_DEV_ENV+1 more
Shortcode Output
[orbisius_support_tickets_field][orbisius_support_tickets_view_ticket][orbisius_support_tickets_list_tickets][orbisius_support_tickets_submit_ticket]
FAQ

Frequently Asked Questions about Orbisius Support Tickets