Shodan
Vulnerabilities
Vulnerable Software
Zucchetti:  >> Helpdeskadvanced  Security Vulnerabilities
CVE-2023-42230
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cross Site Scripting (XSS) via the WSCView/Save function.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-01-13
CVE-2023-42231
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can delete admin users by sending a request to the "WSCView/Delete" function.
CVSS Score
8.1
EPSS Score
0.001
Published
2025-01-13
CVE-2023-42232
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the Navigator/Index function.
CVSS Score
7.5
EPSS Score
0.002
Published
2025-01-13
CVE-2023-42233
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cross Site Scripting (XSS) via the Filter/FilterEditor function.
CVSS Score
6.1
EPSS Score
0.0
Published
2025-01-13
CVE-2023-42234
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cross Site Request Forgery (CSRF) via the WSCView function.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-01-13
CVE-2023-42225
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the Attachment/DownloadTempFile function.
CVSS Score
7.5
EPSS Score
0.002
Published
2025-01-13
CVE-2023-42226
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via Email/SaveAttachment function.
CVSS Score
7.5
EPSS Score
0.002
Published
2025-01-13
CVE-2023-42227
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the WSCView/Save function.
CVSS Score
7.5
EPSS Score
0.002
Published
2025-01-13
CVE-2023-42228
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can edit their own ACL rules by sending a request to the "AclList/SaveAclRules" administrative function.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-01-13
CVE-2023-42229
Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal. Arbitrary files can be created on the system via authenticated SOAP requests to the WSConnector service.
CVSS Score
6.5
EPSS Score
0.004
Published
2025-01-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved