flyboy100
June 2016
I bought this plugin recently and had a quick look at the code. The plugin is full of vulnerabilities!! Anyone can download any file from the server (depending on permissions), anyone can view all the tickets and in general anyone can do whatever they want. Even command execution can be eventually achieved. And all that without authentication! I don’t want to use this plugin any more, and want to request a refund.
admin
Hi, can you please share the screenshots for such activity and also feel free to raise a refund request and we will process the same. We are re-writing this plugin from scratch with a bunch of new features and will take care of any issues reported by our customers.