Lucene search
K

683 matches found

CNNVD
CNNVD
added 2026/05/07 12:0 a.m.11 views

FreeScout 代码问题漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.217 contained code vulnerabilities. These vulnerabilities stemmed from the Helper::sanitizeRemoteUrl function, which...

7.7CVSS5.9AI score0.00209EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

FreeScout 代码问题漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.217 contained code vulnerabilities. This vulnerability stemmed from the/user-setup/hash endpoint, which did not expire the...

9.1CVSS5.9AI score0.00246EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.15 views

PT-2026-38547

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.217 Description The '/user-setup/hash' endpoint accepts a 60-character random invite hash to set a new user's password but does not perform an expiration check, allowing the hash to remain valid indefinitely unt...

9.1CVSS5.8AI score0.00246EPSS
Exploits0References12
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

FreeScout 安全漏洞

FreeScout is a lightweight and powerful free open-source help desk and shared inbox built using PHP Laravel framework by FreeScout Inc. Versions of FreeScout prior to 1.8.214 contained security vulnerabilities. These vulnerabilities stemmed from the conversationchangecustomer operation, which...

7.1CVSS5.9AI score0.00168EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.16 views

PT-2026-38549

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.217 Description A user with updateAutoReply permission can store a Cross-Site Scripting XSS payload in the mailbox auto-reply message. This payload is rendered without escaping in the auto-reply emails sent to...

7.6CVSS5.8AI score0.00171EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38548

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.217 Description A user with the PERM EDIT USERS permission can read and modify the notification subscriptions of any other user, including administrators, by sending a single POST request. This allows a non-admi...

5.4CVSS5.8AI score0.00262EPSS
Exploits0References6
Packet Storm News
Packet Storm News
added 2026/04/23 12:0 a.m.10 views

FreeScout 1.8.206 Network Reachability and HTTP Security Audit Scanner

The provided PHP script is a network reconnaissance and auditing tool designed to scan a local IP range and identify reachable hosts potentially running web services such as FreeScout...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/21 6:16 p.m.8 views

CVE-2026-41192

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, the reply and draft flows trust client-supplied encrypted attachment IDs. Any IDs present in attachmentsall but omitted from retained lists are decrypted and passed directly to Attachment::deleteByIds. Because...

7.1CVSS0.00238EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 6:16 p.m.11 views

CVE-2026-41193

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, FreeScout's module installation feature extracts ZIP archives without validating file paths, allowing an authenticated admin to write files arbitrarily on the server filesystem via a specially crafted ZIP...

9.1CVSS0.00392EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 6:16 p.m.6 views

CVE-2026-41194

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, the mailbox OAuth disconnect action is implemented as GET /mailbox/oauth-disconnect/id/inout/provider. It removes stored OAuth metadata from the mailbox and then redirects. Because it is a GET route, no CSRF...

5.4CVSS0.0012EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.10 views

CVE-2026-41183

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, the assigned-only restriction is applied to direct conversation view and folder queries, but not to non-folder query builders. Global search and the AJAX filter path still reveal conversations that should be...

4.3CVSS0.00224EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.6 views

CVE-2026-40592

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the undo-send route GET /conversation/undo-reply/threadid checks only whether the current user can view the parent conversation. It does not verify that the current user created the reply being undone. In a...

5.9CVSS0.00238EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.6 views

CVE-2026-41189

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, customer-thread editing is authorized through ThreadPolicy::edit, which checks mailbox access but does not apply the assigned-only restriction from ConversationPolicy. A user who cannot view a conversation can...

7.1CVSS0.00223EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.4 views

CVE-2026-41190

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, when APPSHOWONLYASSIGNEDCONVERSATIONS is enabled, direct conversation view correctly blocks users who are neither the assignee nor the creator. The savedraft AJAX path is weaker. A direct POST can create a dra...

7.1CVSS0.00211EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.6 views

CVE-2026-41191

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, MailboxesController::updateSave persists chatstartnew outside the allowed-field filter. A user with only the mailbox sig permission sees only the signature field in the UI, but can still change the hidden...

7.1CVSS0.00211EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.6 views

CVE-2026-40589

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, a low-privileged agent can edit a visible customer and add an email address already owned by a hidden customer in another mailbox. The server discloses the hidden customer’s name and profile URL in the success...

7.6CVSS0.00236EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.9 views

CVE-2026-40590

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the Change Customer modal exposes a “Create a new customer” flow via POST /customers/ajax with action=create. Under limited visibility, the endpoint drops unique-email validation. If the supplied email already...

4.3CVSS0.00214EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.9 views

CVE-2026-40566

FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to 1.8.213 have a Server-Side Request Forgery SSRF vulnerability in the IMAP/SMTP connection test functionality of FreeScout's MailboxesController. Three AJAX actions fetchtest line 731, sendtest line 682, and imapfolder...

4.1CVSS0.00291EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.7 views

CVE-2026-40567

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, an unauthenticated attacker can inject arbitrary HTML into outgoing emails generated by FreeScout by sending an email with a crafted From display name. The name is stored in the database without sanitization a...

5.8CVSS0.00242EPSS
Exploits0References3
NVD
NVD
added 2026/04/21 5:16 p.m.7 views

CVE-2026-40570

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, the loadcustomerinfo action in POST /conversation/ajax returns complete customer profile data to any authenticated user without verifying mailbox access. An attacker only needs a valid email address to retriev...

7.1CVSS0.00249EPSS
Exploits0References3
Rows per page
Query Builder