Helpdesk Pro by Ossolution Team [com_helpdeskpro], before 1.4.0, multiple vulns

2015-07-22T00:00:00
ID JVEL:343
Type joomla
Reporter velteam
Modified 2017-02-20T12:40:24

Description

Helpdesk Pro by Ossolution Team [com_helpdeskpro], before 1.4.0, multiple vulns

Vulnerabilities:

  • Direct Object References
  • Cross-Site Scripting
  • SQL Injection
  • Local file disclosure/Path traversal
  • File Upload

Fixed: vulnerability fixed in version 1.4.0

Developer's notice: http://joomdonation.com/forum/helpdesk-pro/48029-helpdesk-pro-1-4-0-security-released.html