Lucene search
K

27 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:28 a.m.10 views

CVE-2021-33352

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

9.8CVSS7.8AI score0.01361EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:27 a.m.8 views

CVE-2021-33353

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting...

9.8CVSS7.8AI score0.02188EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-20060

Malware in sbrugna...

9.8CVSS9.2AI score0.02188EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-20058

Malware in sbrugna...

9CVSS8.9AI score0.01033EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:7 p.m.16 views

CVE-2021-33351

Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field...

9CVSS6.4AI score0.01033EPSS
Exploits1
NVD
NVD
added 2023/03/08 10:15 p.m.25 views

CVE-2021-33352

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

9.8CVSS9.7AI score0.01361EPSS
Exploits1References2
NVD
NVD
added 2023/03/08 10:15 p.m.26 views

CVE-2021-33353

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting...

9.8CVSS9.7AI score0.02188EPSS
Exploits1References2
OSV
OSV
added 2023/03/08 10:15 p.m.3 views

CVE-2021-33352

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

9.8CVSS6.1AI score0.01361EPSS
Exploits1References2
OSV
OSV
added 2023/03/08 10:15 p.m.6 views

CVE-2021-33351

Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field...

9CVSS5.8AI score0.01033EPSS
Exploits1References2
OSV
OSV
added 2023/03/08 10:15 p.m.3 views

CVE-2021-33353

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting...

9.8CVSS6AI score0.02188EPSS
Exploits1References2
Prion
Prion
added 2023/03/08 10:15 p.m.16 views

Design/Logic Flaw

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

7.5CVSS9.6AI score0.01361EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/03/08 10:15 p.m.17 views

Directory traversal

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting...

7.5CVSS9.6AI score0.02188EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/03/08 10:15 p.m.20 views

Cross site scripting

Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field...

6CVSS8.4AI score0.01033EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/08 12:0 a.m.6 views

CVE-2021-33352

An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field...

8.1AI score0.01361EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/03/08 12:0 a.m.6 views

Wyomind Magento 跨站脚本漏洞

Wyomind Magento is a ticketing system from Wyomind. A security vulnerability exists in Wyomind Help Desk Magento 2 extension version v.1.3.6 and prior versions. An attacker can exploit the vulnerability to elevate privileges via a specially crafted payload in the ticket message field...

9CVSS8.3AI score0.01033EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/03/08 12:0 a.m.30 views

CVE-2021-33353

Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting...

9.8AI score0.02188EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/03/08 12:0 a.m.9 views

CVE-2021-33351

Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field...

6.6AI score0.01033EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/03/08 12:0 a.m.6 views

PT-2023-12205 · Wyomind · Wyomind Help Desk Magento 2 Extension

Name of the Vulnerable Software and Affected Versions: Wyomind Help Desk Magento 2 extension versions 1.3.6 and before Description: The issue allows attackers to escalate privileges via a crafted payload in the ticket message field. This is a Cross Site Scripting vulnerability. Recommendations: F...

9CVSS8.8AI score0.01033EPSS
Exploits1References6
CVE
CVE
added 2023/03/08 12:0 a.m.58 views

CVE-2021-33352

Wyomind Help Desk Magento 2 extension, v1.3.6 and earlier, is affected by a code execution vulnerability triggered by uploading a phar file via the ticket message field. The issue allows arbitrary code execution on the server and is tracked as CVE-2021-33352 with a CVSS v3.1 base score of 9.8 (CR...

9.8CVSS9.6AI score0.01361EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/03/08 12:0 a.m.53 views

CVE-2021-33353

CVE-2021-33353 affects Wyomind Help Desk for Magento 2 (extension version 1.3.6 and earlier). The root cause is a directory traversal vulnerability in the file attachment directory setting, allowing an attacker to execute arbitrary code. The issue is fixed in version 1.3.7. Exploitation details a...

9.8CVSS9.6AI score0.02188EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder