Helpdezk: >> Helpdezk >> 1.1.10 Security Vulnerabilities
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter.
CVSS Score
8.6
EPSS Score
0.003
Published
2023-10-04
SQL injection vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to send a specially crafted SQL query to the rows parameter of the jsonGrid route and extract all the information stored in the application.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-10-04