Lucene search
+L

10 matches found

NVD
NVD
added 2026/06/11 7:16 p.m.10 views

CVE-2026-47177

Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.4, a user who can configure bot settings can set the ticket transcript channel to a channel they can read. When tickets are closed, the bot exports the full ticket history and sends it ...

5.7CVSS0.00251EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-2078

Malware in sbrugna...

4CVSS6AI score0.01674EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/23 10:44 a.m.6 views

CVE-2024-49193

Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing, because Cc fields are extracted from incoming e-mail messages and used to grant additional authorization for ticket viewing, the mechanism for detecting spoofed e-mail messages is insufficient, and the...

7.5CVSS7AI score0.0068EPSS
Exploits0References1
NVD
NVD
added 2024/10/12 2:15 p.m.36 views

CVE-2024-49193

Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing, because Cc fields are extracted from incoming e-mail messages and used to grant additional authorization for ticket viewing, the mechanism for detecting spoofed e-mail messages is insufficient, and the...

7.5CVSS0.0068EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/12 12:0 a.m.18 views

CVE-2024-49193

Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing, because Cc fields are extracted from incoming e-mail messages and used to grant additional authorization for ticket viewing, the mechanism for detecting spoofed e-mail messages is insufficient, and the...

7.2AI score0.0068EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/10/12 12:0 a.m.4 views

PT-2024-7647 · Zendesk · Zendesk

Name of the Vulnerable Software and Affected Versions: Zendesk versions prior to 2024-07-02 Description: The issue is related to improper authorization in Zendesk, allowing remote attackers to read ticket history via e-mail spoofing. This is because Cc fields are extracted from incoming e-mail...

7.8CVSS7AI score0.0068EPSS
Exploits0References20
CVE
CVE
added 2024/10/12 12:0 a.m.62 views

CVE-2024-49193

Zendesk pre-2024-07-02 is affected. The issue arises from processing incoming emails where Cc fields are extracted to grant extra ticket-viewing privileges, combined with an insufficient spoof-detection mechanism and predictable per-ticket support emails. This allows remote attackers to read tick...

7.5CVSS7AI score0.0068EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/10/12 12:0 a.m.20 views

CVE-2024-49193

Zendesk before 2024-07-02 allows remote attackers to read ticket history via e-mail spoofing, because Cc fields are extracted from incoming e-mail messages and used to grant additional authorization for ticket viewing, the mechanism for detecting spoofed e-mail messages is insufficient, and the...

0.0068EPSS
Exploits0References3
OSV
OSV
added 2012/06/04 7:55 p.m.1 views

DEBIAN-CVE-2011-2084

Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users to read 1 hashes of former passwords and 2 ticket correspondence history by leveraging access to a privileged account...

4CVSS6.7AI score0.01674EPSS
Exploits0References1
Prion
Prion
added 2012/06/04 7:55 p.m.14 views

Design/Logic Flaw

Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users to read 1 hashes of former passwords and 2 ticket correspondence history by leveraging access to a privileged account...

4CVSS6.4AI score0.01674EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder