62 matches found
CVE-2022-31398
A cross-site scripting XSS vulnerability in /staff/tools/custom-fields of Helpdeskz v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email name field...
CVE-2022-31400
A cross-site scripting XSS vulnerability in /staff/setup/email-addresses of Helpdeskz v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email name field...
EUVD-2020-19091
Malware in sbrugna...
EUVD-2025-5307
Malicious code in bioql PyPI...
EUVD-2024-27043
Malicious code in bioql PyPI...
EUVD-2022-52909
Malicious code in bioql PyPI...
EUVD-2022-52910
Malicious code in bioql PyPI...
CVE-2024-46639
A cross-site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field of Custom Fields message box...
CVE-2024-46226
A stored cross site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows remote attackers to execute arbitrary JavaScript in the administration panel by including a malicious payload into the file name and upload file function when creating a new ticket...
CVE-2024-46226
A stored cross site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows remote attackers to execute arbitrary JavaScript in the administration panel by including a malicious payload into the file name and upload file function when creating a new ticket...
CVE-2024-46226
A stored cross site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows remote attackers to execute arbitrary JavaScript in the administration panel by including a malicious payload into the file name and upload file function when creating a new ticket...
CVE-2024-46226
A stored cross site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows remote attackers to execute arbitrary JavaScript in the administration panel by including a malicious payload into the file name and upload file function when creating a new ticket...
CVE-2024-46226
A stored cross site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows remote attackers to execute arbitrary JavaScript in the administration panel by including a malicious payload into the file name and upload file function when creating a new ticket...
CVE-2024-46226
CVE-2024-46226 describes a stored XSS in HelpDeskZ
HelpDeskZ 跨站脚本漏洞
HelpDeskZ is a free PHP-based software from HelpDeskZ Open Source. Allows the use of a web-based support ticket system to manage site support. A cross-site scripting vulnerability exists in versions prior to HelpDeskZ v2.0.2. A remote attacker can exploit this vulnerability to execute arbitrary...
CVE-2024-46639
A cross-site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field of Custom Fields message box...
CVE-2024-46639
HelpDeskZ 2.0.2 is affected by an XSS vulnerability in the Name field of Custom Fields message box. The issue allows attackers to inject and execute arbitrary web scripts/HTML. Root cause details are not expanded beyond XSS in the provided documents, and no exploitation specifics are given. Sever...
HelpDeskZ 安全漏洞
HelpDeskZ is a free PHP-based software from HelpDeskZ Open Source. Allows the use of a web-based support ticket system to manage support for a site. A security vulnerability exists in HelpDeskZ version v2.0.2, which stems from a cross-site scripting code that can be injected into the Name field o...
CVE-2024-46639
A cross-site scripting XSS vulnerability in HelpDeskZ v2.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field of Custom Fields message box...
PT-2024-32086 · Helpdesk · Helpdesk
Name of the Vulnerable Software and Affected Versions: HelpDeskZ version 2.0.2 Description: A cross-site scripting XSS vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field of Custom Fields message box. This issue potential...