CVE-2025-12264

Name of the Vulnerable Software and Affected Versions Wisencode versions prior to 20251013

Description A security flaw exists in Wisencode up to version 20251012. This issue affects an unknown functionality within the Create Support Ticket Handler component, specifically the file /support-ticket/create. Manipulation of the Message argument can lead to cross site scripting. The attack can be initiated remotely. The vendor was contacted regarding this issue but did not respond.

Recommendations Update Wisencode to a version later than 20251012. Avoid using the Message parameter in the /support-ticket/create endpoint until the issue is resolved.