Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
help desk vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-40324
SysAid Help Desk prior to 22.1.65 allows XSS via the Linked SRs field, aka FR# 67258.
Sysaid Help Desk
NA
CVE-2007-4716
Multiple SQL injection vulnerabilities in PHD Help Desk prior to 1.31 allow remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Phd Help Desk
9.8
CVSSv3
CVE-2022-46839
Unrestricted Upload of File with Dangerous Type vulnerability in JS Help Desk JS Help Desk – Best Help Desk & Support Plugin.This issue affects JS Help Desk – Best Help Desk & Support Plugin: from n/a up to and including 2.7.1.
Wiselyhub Js Help Desk
8.8
CVSSv3
CVE-2021-43609
An issue exists in Spiceworks Help Desk Server prior to 1.3.3. A Blind Boolean SQL injection vulnerability within the order_by_for_ticket function in app/models/reporting/database_query.rb allows an authenticated malicious user to execute arbitrary SQL commands via the sort param...
Spiceworks Help Desk Server
5.4
CVSSv3
CVE-2019-16958
Cross-site Scripting (XSS) vulnerability in SolarWinds Web Help Desk 12.7.0 allows malicious user to inject arbitrary web script or HTML via Location Name.
Solarwinds Help Desk 12.7.0
8.8
CVSSv3
CVE-2022-46842
Cross-Site Request Forgery (CSRF) vulnerability in JS Help Desk plugin <= 2.7.1 versions.
Wiselyhub Js Help Desk
7.5
CVSSv3
CVE-2021-35243
The HTTP PUT and DELETE methods were enabled in the Web Help Desk web server (12.7.7 and previous versions), allowing users to execute dangerous HTTP requests. The HTTP PUT method is normally used to upload data that is saved on the server with a user-supplied URL. While the DELE...
Solarwinds Web Help Desk
5.3
CVSSv3
CVE-2021-32076
Access Restriction Bypass via referrer spoof exists in SolarWinds Web Help Desk 12.7.2. An attacker can access the 'Web Help Desk Getting Started Wizard', especially the admin account creation page, from a non-privileged IP address network range or loopback address by i...
Solarwinds Web Help Desk
5.3
CVSSv3
CVE-2021-35251
Sensitive information could be displayed when a detailed technical error message is posted. This information could disclose environmental details about the Web Help Desk installation.
Solarwinds Web Help Desk
8.8
CVSSv3
CVE-2018-21002
The js-support-ticket plugin prior to 2.0.6 for WordPress has CSRF.
Joomsky Js Help Desk
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »