SQL Injection Vulnerability in Majestic Support by Majestic Support
CVE-2025-48283

9.3CRITICAL

Key Information:

Vendor: WordPress
Status: Majestic Support
Vendor: CVE Published:; 23 May 2025

What is CVE-2025-48283?

An SQL Injection vulnerability exists within the Majestic Support product that allows unauthorized manipulation of database queries. This flaw can be exploited by attackers to gain access to sensitive data, alter database content, or disrupt normal application operations. The vulnerability affects all versions of Majestic Support up to 1.1.0, making it crucial for users to investigate their instances and apply necessary security measures.

Affected Version(s)

Majestic Support <= 1.1.0

References

https://patchstack.com/database/wordpress/plugin/majestic...

vdb-entry

CVSS V3.1

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 23, 2025
Vulnerability Reserved
May 19, 2025

Credit

LVT-tholv2k (Patchstack Alliance)

WordPress

What is CVE-2025-48283?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit