Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solarwinds web help desk vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-32076
Access Restriction Bypass via referrer spoof exists in SolarWinds Web Help Desk 12.7.2. An attacker can access the 'Web Help Desk Getting Started Wizard', especially the admin account creation page, from a non-privileged IP address network range or loopback address by i...
Solarwinds Web Help Desk
5
CVSSv2
CVE-2021-35251
Sensitive information could be displayed when a detailed technical error message is posted. This information could disclose environmental details about the Web Help Desk installation.
Solarwinds Web Help Desk
5
CVSSv2
CVE-2021-35243
The HTTP PUT and DELETE methods were enabled in the Web Help Desk web server (12.7.7 and previous versions), allowing users to execute dangerous HTTP requests. The HTTP PUT method is normally used to upload data that is saved on the server with a user-supplied URL. While the DELE...
Solarwinds Web Help Desk
3.5
CVSSv2
CVE-2019-16956
SolarWinds Web Help Desk 12.7.0 allows XSS via the Request Type parameter of a ticket.
Solarwinds Web Help Desk 12.7.0
3.5
CVSSv2
CVE-2019-16961
SolarWinds Web Help Desk 12.7.0 allows XSS via a Schedule Name.
Solarwinds Web Help Desk 12.7.0
4.9
CVSSv2
CVE-2019-16954
SolarWinds Web Help Desk 12.7.0 allows HTML injection via a Comment in a Help Request ticket.
Solarwinds Web Help Desk 12.7.0
3.5
CVSSv2
CVE-2019-16960
SolarWinds Web Help Desk 12.7.0 allows XSS via a CSV template file with a crafted Location Name field.
Solarwinds Web Help Desk 12.7.0
3.5
CVSSv2
CVE-2019-16958
Cross-site Scripting (XSS) vulnerability in SolarWinds Web Help Desk 12.7.0 allows malicious user to inject arbitrary web script or HTML via Location Name.
Solarwinds Help Desk 12.7.0
3.6
CVSSv2
CVE-2021-35232
Hard coded credentials discovered in SolarWinds Web Help Desk product. Through these credentials, the attacker with local access to the Web Help Desk host machine allows to execute arbitrary HQL queries against the database and leverage the vulnerability to steal the password has...
Solarwinds Webhelpdesk
3.5
CVSSv2
CVE-2019-16955
SolarWinds Web Help Desk 12.7.0 allows XSS via an uploaded SVG document in a request.
Solarwinds Webhelpdesk 12.7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »