Vulnerabilities > Deskpro > Deskpro > 2.0.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-04-12 | CVE-2007-2011 | HTML Injection vulnerability in Deskpro 2.0.1 Cross-site scripting (XSS) vulnerability in login.php in DeskPro 2.0.1 allows remote attackers to inject arbitrary web script or HTML via the username parameter. network deskpro | 4.3 |
2006-11-28 | CVE-2006-6159 | Cross-Site Scripting vulnerability in Deskpro 2.0.0/2.0.1 Multiple cross-site scripting (XSS) vulnerabilities in newticket.php in DeskPRO 2.0.0 and 2.0.1 allow remote attackers to inject arbitrary web script or HTML via the (1) message or (2) subject parameter. | 6.8 |