cleantalk
Vulnerabilities and Security Researches

JS Help Desk – Best Help Desk & Support Plugin, CVE-2026-24959

CVE, Research URL

CVE-2026-24959

Home page URL

Security reports for JS Help Desk – Best Help Desk & Support Plugin

Application

JS Help Desk – Best Help Desk & Support Plugin

Published on
Feb 20, 2026
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Help Desk js-support-ticket allows Blind SQL Injection.This issue affects JS Help Desk: from n/a through <= 3.0.1.
Affected versions
max 3.0.1.
Status
vulnerable
Previous vulnerability researches
Coming Soon Page & Maintenance Mode (CVE-2019-25139) , Jun 10, 2024
Coming Soon Page & Maintenance Mode (fd9c668cc0f17388cd919046a5f290722fd40062) , Jun 11, 2024
Coming Soon Page & Maintenance Mode (CVE-2019-25140) , Jun 10, 2024
Coming Soon Page & Maintenance Mode (CVE-2024-1136) , Jun 10, 2024
Coming Soon Page &#8211; Responsive Coming Soon &amp; Maintenance Mode (CVE-2018-5664) , Jun 07, 2024
New vulnerability
Business Template Blocks for WPBakery (Visual Composer) Page Builder (CVE-2025-69390) , Feb 27, 2026
3D FlipBook, PDF Viewer, PDF Embedder &#8211; Real 3D FlipBook WordPress Plugin (CVE-2026-25423) , Feb 27, 2026
Popup Builder &#8211; Create highly converting, mobile friendly marketing popups. (CVE-2025-13079) , Feb 27, 2026
Woocommerce &#8211; Xendit (CVE-2025-14461) , Feb 27, 2026
NEX-Forms &#8211; Ultimate Form Builder &#8211; Contact forms and much more (CVE-2025-15510) , Feb 27, 2026