CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13600

The Majestic Support – The Leading-Edge Help Desk & Customer Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.5 via the 'majesticsupportdata' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/majesticsupportdata directory which can contain file attachments included in support tickets.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.8%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2024-13600

Majesticsupport » Majestic Support » Version: N/A

cpe:2.3:a:majesticsupport:majestic_support:-
Majesticsupport » Majestic Support » Version: 1.0.0

cpe:2.3:a:majesticsupport:majestic_support:1.0.0
Majesticsupport » Majestic Support » Version: 1.0.1

cpe:2.3:a:majesticsupport:majestic_support:1.0.1
Majesticsupport » Majestic Support » Version: 1.0.2

cpe:2.3:a:majesticsupport:majestic_support:1.0.2
Majesticsupport » Majestic Support » Version: 1.0.3

cpe:2.3:a:majesticsupport:majestic_support:1.0.3
Majesticsupport » Majestic Support » Version: 1.0.4

cpe:2.3:a:majesticsupport:majestic_support:1.0.4
Majesticsupport » Majestic Support » Version: 1.0.5

cpe:2.3:a:majesticsupport:majestic_support:1.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13600

Products

Pricing

Contact Us