cleantalk
Vulnerabilities and Security Researches

Majestic Support – Help Desk & Support Plugin, CVE-2025-26985

CVE, Research URL

CVE-2025-26985

Home page URL

Security reports for Majestic Support – Help Desk & Support Plugin

Application

Majestic Support – Help Desk & Support Plugin

Published on
Feb 25, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Majestic Support Majestic Support allows PHP Local File Inclusion. This issue affects Majestic Support: from n/a through 1.0.6.
Affected versions
Min -, max 1.0.7.
Status
vulnerable
Previous vulnerability researches
Majestic Support – Help Desk & Support Plugin (CVE-2024-13601) , Feb 13, 2025
Majestic Support – Help Desk & Support Plugin (CVE-2024-13600) , May 07, 2025
Majestic Support – Help Desk & Support Plugin (CVE-2025-26985) , Feb 27, 2025
New vulnerability
CarDealerPress (CVE-2025-3860) , May 08, 2025
Crossword Compiler Puzzles (CVE-2025-46493) , May 08, 2025
Frontend Dashboard (CVE-2025-4104) , May 08, 2025
Icegram Express – Email Marketing, Newsletters and Automation for WordPress & WooCommerce (CVE-2025-0671) , May 08, 2025
Pods – Custom Content Types and Fields (CVE-2025-1446) , May 08, 2025