Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mods-for-hesk vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-13992
An issue exists in Mods for HESK 3.1.0 up to and including 2019.1.0. A Stored XSS issue allows remote unauthenticated malicious users to abuse a helpdesk user's logged in session. A user with sufficient privileges to change their login-page image must open a crafted ticket.
Mods-for-hesk Mods For Hesk
5
CVSSv2
CVE-2020-13993
An issue exists in Mods for HESK 3.1.0 up to and including 2019.1.0. A blind time-based SQL injection issue allows remote unauthenticated malicious users to retrieve information from the database via a ticket.
Mods-for-hesk Mods For Hesk
6.5
CVSSv2
CVE-2020-13994
An issue exists in Mods for HESK 3.1.0 up to and including 2019.1.0. A privileged user can achieve code execution on the server via a ticket because of improper access control of uploaded resources. This might be exploitable in conjunction with CVE-2020-13992 by an unauthenticate...
Mods-for-hesk Mods For Hesk
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started