Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.7 views

PT-2025-112: Stored XSS in FreeScout

The vulnerability was identified in FreeScout, version 1.8.182. The discovered vulnerability allows an attacker to inject arbitrary HTML tags and JavaScript into web pages, resulting in execution of malicious code in the victim’s browser. Vulnerability status: Confirmed by vendor Date of...

6.1CVSS6.1AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.9 views

PT-2025-50: Business Logic Errors in FreeScout

The vulnerability was identified in FreeScout , versions v.1.8.173 and 1.8.174. The discovered vulnerability allows an attacker to gain access to a functional capability without completing the required sequence of actions, bypassing the intended business workflow. Vulnerability status: Confirmed ...

8.8CVSS5.8AI score0.00448EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.9 views

PT-2025-47: Insufficient authorization in FreeScout

The vulnerability was identified in FreeScout , versions v.1.8.173 and 1.8.174. The discovered vulnerability allows an attacker to access information or functionality that exceeds the privileges granted to the user because the application checks access rights incorrectly. Vulnerability status:...

5.3CVSS5.8AI score0.00321EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.7 views

PT-2025-35: Local Privilege Escalation (LPE) in Tunnelblick

The vulnerability was identified in Tunnelblick, versions 3.5beta06 to 6.1beta2. The discovered vulnerability allows an attacker to escalate privileges from a normal user to root. Vulnerability status: Confirmed by vendor Date of vulnerability remediation: 22.04.2025 Recommendations: Update to...

8.1CVSS5.8AI score0.00153EPSS
Exploits0References3
Rows per page
Query Builder