Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
help desk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-1839
Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) view.asp or (2) print.asp or (3) edit parameter to register.asp.
Liberum Liberum Help Desk 0.97.3
7.5
CVSSv2
CVE-2005-4628
SQL injection vulnerability in index.php in HelpDeskPoint 2.38 and previous versions allows remote malicious users to execute arbitrary SQL commands via the page parameter.
Help Desk Point Software Helpdeskpoint
5
CVSSv2
CVE-2005-1838
Multiple cross-site scripting vulnerabilities in castnewPost.asp in Liberum Help Desk 0.97.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) Email, (2) Title, or (3) Description fields.
Liberum Liberum Help Desk 0.97.3
7.5
CVSSv2
CVE-2006-6160
SQL injection vulnerability in details.asp in Doug Luxem Liberum Help Desk 0.97.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Doug Luxem Liberum Help Desk 0.97.3
1 EDB exploit
4.3
CVSSv2
CVE-2009-4047
Multiple cross-site scripting (XSS) vulnerabilities in PHD Help Desk 1.43 allow remote malicious users to inject arbitrary web script or HTML via (1) the PATH_INFO to area.php; the (2) pagina, (3) sentido, (4) q_registros, and (5) orden parameters to area.php; (6) the q_registros...
P-hd Phd Help Desk 1.43
6 EDB exploits
7.5
CVSSv2
CVE-2021-24741
The Support Board WordPress plugin prior to 3.3.4 does not escape multiple POST parameters (such as status_code, department, user_id, conversation_id, conversation_status_code, and recipient_id) before using them in SQL statements, leading to SQL injections which are exploitable ...
Schiocco Support Board - Chat And Help Desk
1 Github repository
3.5
CVSSv2
CVE-2018-18373
In the Schiocco "Support Board - Chat And Help Desk" plugin 1.2.3 for WordPress, a Stored XSS vulnerability has been discovered in file upload areas in the Chat and Help Desk sections via the msg parameter in a /wp-admin/admin-ajax.php sb_ajax_add_message action.
Schiocco Support Board - Chat And Help Desk 1.2.3
7.5
CVSSv2
CVE-2013-3577
SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote malicious users to execute arbitrary SQL commands via the ct100$4MainController$TextBoxSearchValue parameter (aka the search field).
Wave Embassy Remote Administration Server -
Wave Embassy Remote Administration Server Help Desk -
9
CVSSv2
CVE-2013-3578
SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote authenticated users to execute arbitrary SQL commands via the ct100$4MainController$TextBoxSearchValue parameter (aka the search field), leading to execution...
Wave Embassy Remote Administration Server -
Wave Embassy Remote Administration Server Help Desk -
6.8
CVSSv2
CVE-2006-6158
Multiple cross-site scripting (XSS) vulnerabilities in (a) PMOS Help Desk 2.4, formerly (b) InverseFlow Help Desk 2.31 and also sold as (c) Ace Helpdesk 2.31, allow remote malicious users to inject arbitrary web script or HTML via the (1) id or email parameter to ticketview.php, ...
Ace Helpdesk Ace Helpdesk 2.3.1
Inverseflow Help Desk 2.31
Pmos Helpdesk Pmos Helpdesk 2.4
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »