cleantalk
Vulnerabilities and Security Researches

JS Help Desk – Best Help Desk & Support Plugin, CVE-2026-32535

CVE, Research URL

CVE-2026-32535

Home page URL

Security reports for JS Help Desk – Best Help Desk & Support Plugin

Application

JS Help Desk – Best Help Desk & Support Plugin

Published on
Mar 25, 2026
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in JoomSky JS Help Desk js-support-ticket allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JS Help Desk: from n/a through <= 3.0.3.
Affected versions
max 3.0.3.
Status
vulnerable
Previous vulnerability researches
Grid Accordion Lite (CVE-2024-11874) , Jan 11, 2025
New vulnerability
Admin and Site Enhancements (ASE) (CVE-2026-32423) , Mar 29, 2026
Royal Elementor Addons and Templates (CVE-2026-28135) , Mar 29, 2026
Royal Elementor Addons and Templates (CVE-2025-13067) , Mar 29, 2026
Gift Up Gift Cards for WordPress and WooCommerce (CVE-2026-32412) , Mar 29, 2026
WP Telegram Widget and Join Link (CVE-2026-23807) , Mar 29, 2026