Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.5
JS Help Desk: Hackers can steal sensitive information from your database
CVE-2026-24959
Summary
A security weakness in JS Help Desk software can allow hackers to access and steal sensitive information from your database. This is a serious issue that affects all versions of JS Help Desk up to 3.0.1. To protect your business, update to the latest version of JS Help Desk as soon as possible.
Original title
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Help Desk js-support-ticket allows Blind SQL Injection.This issue affects JS Help De...
Original description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in JoomSky JS Help Desk js-support-ticket allows Blind SQL Injection.This issue affects JS Help Desk: from n/a through <= 3.0.1.
nvd CVSS3.1
8.5
Vulnerability type
CWE-89
SQL Injection
Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026