415 matches found
CVE-2023-32225 Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type
Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method...
CVE-2023-32225
CVE-2023-32225 affects Sysaid. Issue: Unrestricted upload of a dangerous file type via an unspecified method, exploitable by a malicious user with administrative privileges. Affected: Sysaid versions prior to 23.2.14 b18 (per CNNVD); no fixed version explicitly stated across all sources, PT-Secur...
CVE-2023-32225 Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type
Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method...
PT-2023-23670 · Sysaid · Sysaid
Name of the Vulnerable Software and Affected Versions: Sysaid affected versions not specified Description: The issue allows authenticated users to exfiltrate files from the server via an unspecified method. This is related to files or directories being accessible to external parties...
Sysaid Technologies Sysaid 代码问题漏洞
Sysaid Technologies SysAid is a suite of IT service management solutions from Sysaid Technologies, Israel. A security vulnerability exists in Sysaid Technologies Sysaid versions prior to 23.2.14 b18, which stems from a malicious user with administrative privileges may be able to upload dangerous...
Sysaid Technologies SysAid 安全漏洞
Sysaid Technologies SysAid is a suite of IT service management solutions from Sysaid Technologies, Israel. A security vulnerability exists in Sysaid Technologies SysAid versions prior to 23.2.14 b18, which originates from the possibility that an authenticated user may be able to steal files from...
PT-2023-23669 · Sysaid · Sysaid
Name of the Vulnerable Software and Affected Versions: Sysaid affected versions not specified Description: A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method. Recommendations: At the moment, there is no information about a newer...
CVE-2022-40322
SysAid Help Desk before 22.1.65 allows XSS, aka FR 66542 and 65579...
CVE-2022-40323
SysAid Help Desk before 22.1.65 allows XSS in the Password Services module, aka FR 67241...
CVE-2022-40322
SysAid Help Desk before 22.1.65 allows XSS, aka FR 66542 and 65579...
CVE-2022-40324
SysAid Help Desk before 22.1.65 allows XSS via the Linked SRs field, aka FR 67258...
CVE-2022-40325
SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR 67262...
CVE-2022-40324
SysAid Help Desk before 22.1.65 allows XSS via the Linked SRs field, aka FR 67258...
CVE-2022-40323
SysAid Help Desk before 22.1.65 allows XSS in the Password Services module, aka FR 67241...
CVE-2022-40325
SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR 67262...
CVE-2022-40325
SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR 67262...
CVE-2022-40323
SysAid Help Desk before 22.1.65 allows XSS in the Password Services module, aka FR 67241...
CVE-2022-40322
SysAid Help Desk before 22.1.65 allows XSS, aka FR 66542 and 65579...
CVE-2022-40324
SysAid Help Desk before 22.1.65 allows XSS via the Linked SRs field, aka FR 67258...
Design/Logic Flaw
SysAid Help Desk before 22.1.65 allows XSS, aka FR 66542 and 65579...