Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
help desk vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2016-5683
ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQL_Config.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file.
Readydesk Readydesk 9.1
4.3
CVSSv2
CVE-2021-29267
Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting (XSS) by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature.
Sherlockim Sherlockim
1 Github repository
4.3
CVSSv2
CVE-2018-15608
Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the "AD Delegation" "Help Desk Technicians" screen.
Manageengine Admanager Plus 6.5.7
1 EDB exploit
4.3
CVSSv2
CVE-2015-1026
Multiple cross-site scripting (XSS) vulnerabilities in ZOHO ManageEngine ADManager Plus prior to 6.2 Build 6270 allow remote malicious users to inject arbitrary web script or HTML via the (1) technicianSearchText parameter to the Help Desk Technician page or (2) rolesSearchText p...
Zohocorp Manageengine Admanager Plus
4.3
CVSSv2
CVE-2012-4751
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x prior to 2.4.15, 3.0.x prior to 3.0.17, and 3.1.x prior to 3.1.11 allows remote malicious users to inject arbitrary web script or HTML via an e-mail message body with whitespace before a...
Otrs Otrs 2.4.0
Otrs Otrs 2.4.1
Otrs Otrs 2.4.10
Otrs Otrs 2.4.5
Otrs Otrs 2.4.13
Otrs Otrs 2.4.12
Otrs Otrs 2.4.6
Otrs Otrs 2.4.9
Otrs Otrs 2.4.3
Otrs Otrs 2.4.11
Otrs Otrs 2.4.4
Otrs Otrs 2.4.2
Otrs Otrs 2.4.14
Otrs Otrs 2.4.8
Otrs Otrs 2.4.7
Otrs Otrs 3.0.16
Otrs Otrs 3.0.12
Otrs Otrs 3.0.10
Otrs Otrs 3.0.2
Otrs Otrs 3.0.15
Otrs Otrs 3.0.0
Otrs Otrs 3.0.1
2 EDB exploits
4.3
CVSSv2
CVE-2012-2582
Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) Help Desk 2.4.x prior to 2.4.13, 3.0.x prior to 3.0.15, and 3.1.x prior to 3.1.9, and OTRS ITSM 2.1.x prior to 2.1.5, 3.0.x prior to 3.0.6, and 3.1.x prior to 3.1.6, allow remote malicious us...
Otrs Otrs 2.4.0
Otrs Otrs 2.4.1
Otrs Otrs 2.4.10
Otrs Otrs 2.4.5
Otrs Otrs 2.4.12
Otrs Otrs 2.4.6
Otrs Otrs 2.4.9
Otrs Otrs 2.4.3
Otrs Otrs 2.4.11
Otrs Otrs 2.4.4
Otrs Otrs 2.4.2
Otrs Otrs 2.4.8
Otrs Otrs 2.4.7
Otrs Otrs 3.0.12
Otrs Otrs 3.0.10
Otrs Otrs 3.0.2
Otrs Otrs 3.0.0
Otrs Otrs 3.0.1
Otrs Otrs 3.0.11
Otrs Otrs 3.0.4
Otrs Otrs 3.0.5
Otrs Otrs 3.0.7
1 EDB exploit
4.3
CVSSv2
CVE-2009-4047
Multiple cross-site scripting (XSS) vulnerabilities in PHD Help Desk 1.43 allow remote malicious users to inject arbitrary web script or HTML via (1) the PATH_INFO to area.php; the (2) pagina, (3) sentido, (4) q_registros, and (5) orden parameters to area.php; (6) the q_registros...
P-hd Phd Help Desk 1.43
6 EDB exploits
4.3
CVSSv2
CVE-2009-1261
Multiple cross-site scripting (XSS) vulnerabilities in Web Help Desk 9.1.22 (evaluation version) allow remote malicious users to inject arbitrary web script or HTML via the (1) Report Name, (2) Asset No., and (3) Full Name fields in a Models action. NOTE: the provenance of this i...
Webhelpdesk Web Help Desk 9.1.22
4.3
CVSSv2
CVE-2009-0303
Cross-site scripting (XSS) vulnerability in Web Help Desk prior to 9.1.18 allows remote malicious users to inject arbitrary web script or HTML via vectors related to "encoded JavaScript" and Helpdesk.woa.
Webhelpdesk Web Help Desk 8.3.6
Webhelpdesk Web Help Desk 9.1.5
Webhelpdesk Web Help Desk 8.0.21
Webhelpdesk Web Help Desk 8.4.3.4
Webhelpdesk Web Help Desk 9.1.9
Webhelpdesk Web Help Desk 8.3.6.1
Webhelpdesk Web Help Desk 8.3.3
Webhelpdesk Web Help Desk 8.3.4.2
Webhelpdesk Web Help Desk 8.4.3.1
Webhelpdesk Web Help Desk 8.4.1.8
Webhelpdesk Web Help Desk 9.1.6
Webhelpdesk Web Help Desk 8.3.1.3
Webhelpdesk Web Help Desk 9.1.0
Webhelpdesk Web Help Desk 8.2.3.4
Webhelpdesk Web Help Desk 8.2.0.8
Webhelpdesk Web Help Desk 9.1.11
Webhelpdesk Web Help Desk 8.3.0.3
Webhelpdesk Web Help Desk 8.3.5.6
Webhelpdesk Web Help Desk 8.3.5.5
Webhelpdesk Web Help Desk 8.3.5.4
Webhelpdesk Web Help Desk 8.4.6.2
Webhelpdesk Web Help Desk 8.3.5.2
4
CVSSv2
CVE-2019-16959
SolarWinds Web Help Desk 12.7.0 allows CSV Injection, also known as Formula Injection, via a file attached to a ticket.
Solarwinds Webhelpdesk 12.7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »