12 matches found
EUVD-2023-43730
Malicious code in bioql PyPI...
CVE-2023-3037
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
CVE-2023-3037
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
Authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
Sql injection
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3038 HelpDezk Community improper authorization
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3038 HelpDezk Community improper authorization
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application...
CVE-2023-3038
CVE-2023-3038 describes an SQL injection in HelpDezk Community affecting version 1.1.10. The vulnerability allows a remote attacker to send a crafted SQL query to the rows parameter of the jsonGrid route to extract data stored by the application. Public sources report CVSS details: NVD shows a ba...
CVE-2023-3037 HelpDezk Community improper authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
CVE-2023-3037 HelpDezk Community improper authorization
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter...
CVE-2023-3037
CVE-2023-3037 refers to an improper authorization vulnerability in HelpDezk Community (v1.1.10). The connected sources describe that a remote attacker could access the platform without authentication and retrieve personal data via the jsonGrid parameter. The CVSS 3.1 metrics indicate a HIGH base ...
PT-2023-22666 · Unknown · Helpdezk Community
Name of the Vulnerable Software and Affected Versions: HelpDezk Community version 1.1.10 Description: The issue is related to a SQL injection vulnerability that could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the "jsonGrid route" and extract all the...