WP-Safety

Zupportly – WordPress Helpdesk & Customer Support Ticket System Security & Risk Analysis

wordpress.org/plugins/zupportly

Complete WordPress Helpdesk & Customer Support Ticket System

0 active installs v1.1 PHP 7.4+ WP 6.0+ Updated Mar 13, 2026
customer-supporthelpdesksupportticketticketing-system
100
A · Safe
CVEs total0
Unpatched0
Last CVENever
Plugin page Download
Safety Verdict

Is Zupportly – WordPress Helpdesk & Customer Support Ticket System Safe to Use in 2026?

Generally Safe

Score 100/100

Zupportly – WordPress Helpdesk & Customer Support Ticket System has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 21d ago
Risk Assessment

The "zupportly" v1.2 plugin demonstrates several positive security practices, including the complete absence of dangerous functions, file operations, and external HTTP requests. The reliance on prepared statements for all SQL queries and a high percentage of properly escaped output (95%) are also significant strengths. The plugin also shows a good use of nonce and capability checks, indicating an awareness of common WordPress security mechanisms. However, the analysis reveals a notable concern: 5 out of 15 AJAX handlers lack authentication checks. This creates a significant attack surface where unauthenticated users could potentially interact with sensitive functionalities. While the taint analysis did not reveal critical or high-severity unsanitized paths, the presence of 3 flows with unsanitized paths warrants attention, as these could become vulnerabilities if specific conditions are met. The plugin's history of zero known CVEs is a positive indicator, suggesting a generally secure development track record. In conclusion, "zupportly" v1.2 has a strong foundation with good coding practices for SQL and output handling. The primary weakness lies in the unprotected AJAX endpoints, which represent the most immediate security risk. The unsanitized path flows, while not critical in this analysis, highlight a potential area for future improvement.

Key Concerns

  • Unprotected AJAX handlers
  • Flows with unsanitized paths
Vulnerabilities
None known

Zupportly – WordPress Helpdesk & Customer Support Ticket System Security Vulnerabilities

No known vulnerabilities — this is a good sign.
Code Analysis
Analyzed Mar 17, 2026

Zupportly – WordPress Helpdesk & Customer Support Ticket System Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
20
415 escaped
Nonce Checks
13
Capability Checks
20
File Operations
0
External Requests
0
Bundled Libraries
0

Output Escaping

95% escaped435 total outputs
Data Flows
3 unsanitized

Data Flow Analysis

5 flows3 with unsanitized paths
zupportly_add_ticket_number_filter (includes\admin.php:144)
Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized
Attack Surface
5 unprotected

Zupportly – WordPress Helpdesk & Customer Support Ticket System Attack Surface

Entry Points17
Unprotected5

AJAX Handlers 15

noprivwp_ajax_zupportly_send_ticketincludes\frontend.php:240
authwp_ajax_zupportly_send_ticketincludes\frontend.php:241
noprivwp_ajax_zupportly_view_ticketsincludes\frontend.php:331
authwp_ajax_zupportly_view_ticketsincludes\frontend.php:332
noprivwp_ajax_zupportly_user_replyincludes\frontend.php:533
authwp_ajax_zupportly_user_replyincludes\frontend.php:534
noprivwp_ajax_zupportly_close_ticketincludes\frontend.php:553
authwp_ajax_zupportly_close_ticketincludes\frontend.php:554
noprivwp_ajax_zupportly_poll_repliesincludes\frontend.php:587
authwp_ajax_zupportly_poll_repliesincludes\frontend.php:588
authwp_ajax_zupportly_save_agent_avatarincludes\settings.php:7
authwp_ajax_zupportly_remove_agent_avatarincludes\settings.php:17
authwp_ajax_zupportly_save_bubble_nameincludes\settings.php:29
authwp_ajax_zupportly_save_bubble_toggleincludes\settings.php:46
authwp_ajax_zupportly_save_view_urlincludes\settings.php:57

Shortcodes 2

[zupportly_tickets] includes\frontend.php:624
[zupportly_ticket_form] includes\frontend.php:736
WordPress Hooks 27
actionadmin_enqueue_scriptsincludes\admin.php:36
actionpost_edit_form_tagincludes\admin.php:44
actionadmin_initincludes\admin.php:49
actionload-post.phpincludes\admin.php:60
actionadmin_menuincludes\admin.php:73
filterpost_row_actionsincludes\admin.php:133
filterbulk_actions-edit-zupportly_ticketincludes\admin.php:139
actionrestrict_manage_postsincludes\admin.php:172
filterpre_get_postsincludes\admin.php:196
actionadd_meta_boxesincludes\admin.php:208
actionsave_post_zupportly_ticketincludes\admin.php:569
filtermanage_zupportly_ticket_posts_columnsincludes\admin.php:586
actionadmin_headincludes\admin.php:588
actionmanage_zupportly_ticket_posts_custom_columnincludes\admin.php:646
actionadmin_menuincludes\admin.php:662
actionadmin_menuincludes\admin.php:664
filteruser_has_capincludes\admin.php:681
actioninitincludes\agent-roles.php:21
filteruser_has_capincludes\agent-roles.php:29
actionpre_get_postsincludes\agent-roles.php:101
actioncurrent_screenincludes\agent-roles.php:112
actionadmin_initincludes\agent-roles.php:123
filterlogin_redirectincludes\agent-roles.php:138
actionadmin_menuincludes\agent-roles.php:158
actionwp_enqueue_scriptsincludes\frontend.php:28
actionwp_footerincludes\frontend.php:130
actioninitzupportly.php:48
Maintenance & Trust

Zupportly – WordPress Helpdesk & Customer Support Ticket System Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedMar 13, 2026
PHP min version7.4
Downloads197

Community Trust

Rating100/100
Number of ratings1
Active installs0
Alternatives

Zupportly – WordPress Helpdesk & Customer Support Ticket System Alternatives

SupportCandy – Helpdesk & Customer Support Ticket System

SupportCandy – Helpdesk & Customer Support Ticket System

supportcandy

B
76

Enhance your WordPress site with our helpdesk and support ticket system. Manage customer support, tickets, and email tickets efficiently.

10K 16 CVEs
Hive Support | AI-Powered Help Desk, Live Chat and Chatbot

Hive Support | AI-Powered Help Desk, Live Chat and Chatbot

hive-support

C
66

The All-In-One Help Desk, Live Chat & AI Chat Bot Plugin for WordPress.

50 1 unpatched
HelpDesk Contact Form

HelpDesk Contact Form

helpdesk-contact-form

A
99

Use the WordPress contact form plugin by the HelpDesk ticket system to connect with visitors. Organize and manage messages — all without coding!

30 1 CVE
Paldesk – Live Chat & Helpdesk

Paldesk – Live Chat & Helpdesk

paldesk-live-chat-helpdesk

A
85

Powerful live chat & helpdesk plugin made for your WordPress website. Convert leads to sales & help customers in real time - it's free!

30 No CVEs
Fluent Support – Helpdesk & Customer Support Ticket System

Fluent Support – Helpdesk & Customer Support Ticket System

fluent-support

A
89

Feature Rich and Super Fast Support and Customer Ticketing System for WordPress.

10K 7 CVEs
Developer Profile

Zupportly – WordPress Helpdesk & Customer Support Ticket System Developer Profile

Anowar Hossain Rana

9 plugins · 550 total installs

92
trust score
Avg Security Score
97/100
Avg Patch Time
30 days
View full developer profile
Detection Fingerprints

How We Detect Zupportly – WordPress Helpdesk & Customer Support Ticket System

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/zupportly/assets/css/et-admin-style.css/wp-content/plugins/zupportly/assets/js/et-admin.js
Script Paths
/wp-content/plugins/zupportly/assets/js/et-admin.js
Version Parameters
zupportly/assets/css/et-admin-style.css?ver=zupportly/assets/js/et-admin.js?ver=

HTML / DOM Fingerprints

CSS Classes
zupportly-menu-badgeawaiting-mod
HTML Comments
<!-- Unique Tracking --><!-- Email alerts --><!-- Agent reply sends email notification to customer (was in v1.1, preserved) --><!-- New in v1.2:+7 more
Data Attributes
enctype="multipart/form-data"
JS Globals
zupportly_admin_ajax
FAQ

Frequently Asked Questions about Zupportly – WordPress Helpdesk & Customer Support Ticket System