Shodan
Vulnerabilities
Vulnerable Software
Wyomind:  >> Help Desk  >> 1.2.1  Security Vulnerabilities
CVE-2021-33351
Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field.
CVSS Score
9.0
EPSS Score
0.001
Published
2023-03-08
CVE-2021-33352
An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-03-08
CVE-2021-33353
Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting.
CVSS Score
9.8
EPSS Score
0.005
Published
2023-03-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved