69 matches found
EUVD-2014-8175
Malware in sbrugna...
EUVD-2017-16471
Malware in sbrugna...
EUVD-2017-5656
Malware in sbrugna...
EUVD-2017-16470
Malware in sbrugna...
EUVD-2017-5657
Malware in sbrugna...
EUVD-2023-43729
Malicious code in bioql PyPI...
EUVD-2023-43730
Malicious code in bioql PyPI...
CVE-2017-14146
HelpDEZk 1.1.1 allows remote authenticated users to execute arbitrary PHP code by uploading a .php attachment and then requesting it in the helpdezk\app\uploads\helpdezk\attachments\ directory...
CVE-2017-14145
HelpDEZk 1.1.1 has SQL Injection in app\modules\admin\controllers\loginController.php via the admin/login/getWarningInfo/id/ PATHINFO, related to the selectWarning function...
CVE-2023-3037
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
CVE-2023-3037
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
Authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
Sql injection
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3038 HelpDezk Community improper authorization
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3038
CVE-2023-3038 describes an SQL injection in HelpDezk Community affecting version 1.1.10. The vulnerability allows a remote attacker to send a crafted SQL query to the rows parameter of the jsonGrid route to extract data stored by the application. Public sources report CVSS details: NVD shows a ba...
CVE-2023-3038 HelpDezk Community improper authorization
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3037
CVE-2023-3037 refers to an improper authorization vulnerability in HelpDezk Community (v1.1.10). The connected sources describe that a remote attacker could access the platform without authentication and retrieve personal data via the jsonGrid parameter. The CVSS 3.1 metrics indicate a HIGH base ...
CVE-2023-3037 HelpDezk Community improper authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
CVE-2023-3037 HelpDezk Community improper authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
PT-2023-22666 · Unknown · Helpdezk Community
Name of the Vulnerable Software and Affected Versions: HelpDezk Community version 1.1.10 Description: The issue is related to a SQL injection vulnerability that could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the "jsonGrid route" and extract all the...