cleantalk
Vulnerabilities and Security Researches

JS Help Desk – Best Help Desk & Support Plugin, CVE-2026-24959

CVE, Research URL

CVE-2026-24959

Home page URL

Security reports for JS Help Desk – Best Help Desk & Support Plugin

Application

JS Help Desk – Best Help Desk & Support Plugin

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Help Desk js-support-ticket allows Blind SQL Injection.This issue affects JS Help Desk: from n/a through <= 3.0.1.
Affected versions
max 3.0.1.
Status
vulnerable
Previous vulnerability researches
BoomDevs WordPress Coming Soon Plugin (CVE-2025-62083) , Jan 10, 2026
New vulnerability
Google Map Targeting (CVE-2025-67990) , Feb 27, 2026
Business Template Blocks for WPBakery (Visual Composer) Page Builder (CVE-2025-69390) , Feb 27, 2026
3D FlipBook, PDF Viewer, PDF Embedder &#8211; Real 3D FlipBook WordPress Plugin (CVE-2026-25423) , Feb 27, 2026
Popup Builder &#8211; Create highly converting, mobile friendly marketing popups. (CVE-2025-13079) , Feb 27, 2026
Woocommerce &#8211; Xendit (CVE-2025-14461) , Feb 27, 2026