2 matches found
CVE-2009-0303
CVE-2009-0303 describes a Cross-site scripting (XSS) vulnerability in the Web Help Desk product prior to version 9.1.18. The vulnerability allows remote attackers to inject arbitrary web script or HTML via vectors related to encoded JavaScript and Helpdesk.woa. The available connected sources con...
CVE-2009-1261
The CVE-2009-1261 entry describes multiple cross-site scripting (XSS) flaws in Web Help Desk 9.1.22 (evaluation version). The vulnerabilities allow remote attackers to inject arbitrary script/HTML via three input fields in a Models action: Report Name, Asset No., and Full Name. The linked records...