Skip to main content

Django Helpdesk

4 CVEs product

Monthly

CVE-2018-25111 PyPI MEDIUM POC PATCH This Month

django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in models.py. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Python Information Disclosure Django Helpdesk
NVD GitHub
CVSS 3.1
5.1
EPSS
0.1%
CVE-2021-3994 PyPI CRITICAL POC PATCH Act Now

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub
CVSS 3.1
9.6
EPSS
1.4%
CVE-2021-3950 PyPI MEDIUM POC PATCH This Month

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub
CVSS 3.1
5.4
EPSS
0.8%
CVE-2021-3945 PyPI MEDIUM POC PATCH This Month

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub
CVSS 3.1
6.1
EPSS
1.0%
EPSS 0% CVSS 5.1
MEDIUM POC PATCH This Month

django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in models.py. Rated medium severity (CVSS 5.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Python Information Disclosure Django Helpdesk
NVD GitHub
EPSS 1% CVSS 9.6
CRITICAL POC PATCH Act Now

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC PATCH This Month

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Python XSS Django Helpdesk
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy