Skip to main content

Deskpro

8 CVEs product

Monthly

CVE-2021-35391 HIGH POC This Week

Server Side Request Forgery vulnerability found in Deskpro Support Desk v2021.21.6 allows attackers to execute arbitrary code via a crafted URL. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE SSRF Deskpro
NVD
CVSS 3.1
7.2
EPSS
0.9%
CVE-2021-36695 MEDIUM POC This Month

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in the download file feature on a manager profile due to lack of input. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Deskpro
NVD
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-36696 MEDIUM POC This Month

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in social media links on a user profile due to lack of input validation. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Deskpro
NVD
CVSS 3.1
5.4
EPSS
0.6%
CVE-2020-11467 HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Deserialization Deskpro
NVD
CVSS 3.1
7.2
EPSS
4.0%
CVE-2020-11466 MEDIUM POC This Month

An issue was discovered in Deskpro before 2019.8.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Deskpro
NVD
CVSS 3.1
4.3
EPSS
1.2%
CVE-2020-11465 HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Deskpro
NVD
CVSS 3.1
8.8
EPSS
1.9%
CVE-2020-11464 MEDIUM POC This Month

An issue was discovered in Deskpro before 2019.8.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Deskpro
NVD
CVSS 3.1
4.3
EPSS
1.2%
CVE-2020-11463 HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Deskpro
NVD
CVSS 3.1
7.5
EPSS
1.8%
EPSS 1% CVSS 7.2
HIGH POC This Week

Server Side Request Forgery vulnerability found in Deskpro Support Desk v2021.21.6 allows attackers to execute arbitrary code via a crafted URL. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE SSRF Deskpro
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in the download file feature on a manager profile due to lack of input. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Deskpro
NVD
EPSS 1% CVSS 5.4
MEDIUM POC This Month

Deskpro cloud and on-premise Deskpro 2021.1.6 and fixed in Deskpro 2021.1.7 contains a cross-site scripting (XSS) vulnerability in social media links on a user profile due to lack of input validation. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Deskpro
NVD
EPSS 4% CVSS 7.2
HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Deserialization Deskpro
NVD
EPSS 1% CVSS 4.3
MEDIUM POC This Month

An issue was discovered in Deskpro before 2019.8.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Deskpro
NVD
EPSS 2% CVSS 8.8
HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Deskpro
NVD
EPSS 1% CVSS 4.3
MEDIUM POC This Month

An issue was discovered in Deskpro before 2019.8.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Deskpro
NVD
EPSS 2% CVSS 7.5
HIGH POC This Week

An issue was discovered in Deskpro before 2019.8.0. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Deskpro
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy