Lucene search
K

78 matches found

NVD
NVD
added 2 days ago6 views

CVE-2026-13262

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'val' parameter in all versions up to, and including, 1.1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparatio...

6.5CVSS0.00352EPSS
Exploits0References10
EUVD
EUVD
added 2 days ago7 views

EUVD-2026-43122

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'val' parameter in all versions up to, and including, 1.1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparatio...

6.5CVSS6.1AI score0.00352EPSS
Exploits0References10
Cvelist
Cvelist
added 2 days ago31 views

CVE-2026-13262 Majestic Support <= 1.1.9 - Authenticated (Subscriber+) SQL Injection via 'val' Parameter

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to generic SQL Injection via the 'val' parameter in all versions up to, and including, 1.1.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparatio...

6.5CVSS0.00352EPSS
Exploits0References10
CVE
CVE
added 2 days ago12 views

CVE-2026-13262

CVE-2026-13262 affects the Majestic Support WordPress plugin (up to version 1.1.9). The issue is a generic SQL injection in the val parameter caused by insufficient escaping and lack of proper query preparation, allowing an attacker to append additional SQL to existing queries and potentially ext...

6.5CVSS6.1AI score0.00352EPSS
Exploits0References10
NVD
NVD
added 2026/06/26 3:16 p.m.9 views

CVE-2026-57646

Subscriber Insecure Direct Object References IDOR in Majestic Support = 1.1.7 versions...

5.4CVSS0.00181EPSS
Exploits0References1
CVE
CVE
added 2026/06/26 2:53 p.m.9 views

CVE-2026-57646

CVE-2026-57646 affects the WordPress Majestic Support plugin (versions

5.4CVSS5.8AI score0.00181EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/26 2:53 p.m.6 views

EUVD-2026-39761

Subscriber Insecure Direct Object References IDOR in Majestic Support = 1.1.7 versions...

5.4CVSS5.8AI score0.00181EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/26 2:53 p.m.37 views

CVE-2026-57646 WordPress Majestic Support plugin <= 1.1.7 - Insecure Direct Object References (IDOR) vulnerability

Subscriber Insecure Direct Object References IDOR in Majestic Support = 1.1.7 versions...

5.4CVSS0.00181EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/06/26 1:13 p.m.5 views

WordPress Majestic Support plugin <= 1.1.7 - Insecure Direct Object References (IDOR) vulnerability

Insecure Direct Object References IDOR vulnerability discovered by William Matos in WordPress Plugin Majestic Support versions = 1.1.7...

5.4CVSS5.8AI score0.00181EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/16 7:22 p.m.5 views

CVE-2026-40778

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.3CVSS5.8AI score0.00163EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/16 3:31 p.m.6 views

EUVD-2026-22905

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.3CVSS5.8AI score0.00163EPSS
Exploits0References2
NVD
NVD
added 2026/04/15 11:16 a.m.7 views

CVE-2026-40778

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.3CVSS0.00163EPSS
Exploits0References1
CVE
CVE
added 2026/04/15 10:21 a.m.19 views

CVE-2026-40778

CVE-2026-40778 concerns the WordPress Majestic Support plugin with versions prior to 1.1.3 (i.e.,

5.3CVSS5.8AI score0.00163EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/15 10:21 a.m.37 views

CVE-2026-40778 WordPress Majestic Support plugin <= 1.1.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.3CVSS0.00163EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/15 10:21 a.m.5 views

CVE-2026-40778 WordPress Majestic Support plugin <= 1.1.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.8AI score0.00163EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/15 10:21 a.m.6 views

CVE-2026-40778

Missing Authorization vulnerability in Majestic Support Majestic Support majestic-support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Majestic Support: from n/a through = 1.1.2...

5.8AI score0.00163EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.9 views

WordPress plugin Majestic Support 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

5.3CVSS5.8AI score0.00163EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.11 views

PT-2026-33050

Name of the Vulnerable Software and Affected Versions Majestic Support versions prior to 1.1.3 Description Majestic Support contains a flaw where incorrectly configured access control security levels allow for missing authorization. Recommendations Update to a version newer than 1.1.2...

5.3CVSS5.8AI score0.00163EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/04/09 6:28 p.m.5 views

WordPress Majestic Support plugin <= 1.1.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Jakub Herman in WordPress Plugin Majestic Support versions = 1.1.2...

5.3CVSS5.8AI score0.00163EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/10/30 9:16 a.m.5 views

CVE-2025-64284

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Majestic Support Majestic Support majestic-support allows PHP Local File Inclusion.This issue affects Majestic Support: from n/a through = 1.0.7...

7.5CVSS5.9AI score0.00363EPSS
Exploits0References1
Rows per page
Query Builder