Trudesk Security Vulnerabilities and Issues — Trudesk CVE List

Stored XSS in "Name", "Group Name" & "Title" in GitHub repository polonel/trudesk prior to v1.2.0. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.

9CVSS5.9AI score0.00304EPSS

CVE•added 2022/05/21 3:15 a.m.•61 views

CVE-2022-1752

Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.2.

9CVSS8AI score0.00387EPSS

CVE•added 2022/05/20 11:15 p.m.•60 views

CVE-2022-1775

Weak Password Requirements in GitHub repository polonel/trudesk prior to 1.2.2.

9.8CVSS9.3AI score0.00284EPSS

CVE•added 2022/05/20 6:15 p.m.•55 views

CVE-2022-1770

Improper Privilege Management in GitHub repository polonel/trudesk prior to 1.2.2.

9.9CVSS8.8AI score0.00284EPSS

CVE•added 2022/06/20 5:15 p.m.•45 views

CVE-2022-2128

Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.4.

9.8CVSS9.6AI score0.00376EPSS