Lucene search

K

Readydesk Security Vulnerabilities

cve
cve

CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQL_Config.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll...

7.8CVSS

8.1AI Score

0.0004EPSS

2016-08-26 07:59 PM
19
cve
cve

CVE-2016-5050

Unrestricted file upload vulnerability in chat/sendfile.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary code by uploading and requesting a .aspx...

9.8CVSS

9.7AI Score

0.014EPSS

2016-08-26 07:59 PM
23
cve
cve

CVE-2016-5049

Directory traversal vulnerability in chat/openattach.aspx in ReadyDesk 9.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the SESID parameter in conjunction with a filename in the FNAME...

7.5CVSS

7.8AI Score

0.002EPSS

2016-08-26 07:59 PM
17
cve
cve

CVE-2016-5048

SQL injection vulnerability in chat/staff/default.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary SQL commands via the user name...

9.8CVSS

9.9AI Score

0.002EPSS

2016-08-26 07:59 PM
18