CVE-2026-41190

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.215, when APPSHOWONLYASSIGNEDCONVERSATIONS is enabled, direct conversation view correctly blocks users who are neither the assignee nor the creator. The savedraft AJAX path is weaker. A direct POST can create a dra...

EUVD-2022-3889

Malicious code in bioql PyPI...

The vulnerability of the FreeScout support service management system lies in the improper implementation of the sequence of actions to be performed, allowing a intruder to gain unauthorized access to the system’s functional capabilities.

The vulnerability of the FreeScout support service management system is related to the improper implementation of the sequence of actions to be performed. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the system’s functions...

CVE-2025-22512

CVE-2025-22512 is a Missing Authorization vulnerability affecting the Help Scout plugin for WordPress (Sprout Apps Help Scout). The Red Hat entry notes the issue affects Help Scout versions from n/a up to 6.5.1. Wordfence references the same CVE and lists the vulnerability in its vulnerability da...

Scout 安全漏洞

Scout is an open source platform from Clinical Genomics for analyzing VCFs and being able to aid collaborations to solve rare diseases faster. A security vulnerability exists in Scout versions prior to 4.89 that stems from a lack of filename cleanup and can bypass expected file extensions and all...

scout 路径遍历漏洞

scout is analyzing VCF and collaborating to solve rare diseases faster. A security vulnerability exists in versions prior to scout version 4.52 that stems from an endfile call that can lead to path traversal...