Vulnerabilities > Grouplink > Ehelpdesk > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-03 | CVE-2007-5176 | Cross-Site Scripting vulnerability in Grouplink Ehelpdesk 6.2.2 Multiple cross-site scripting (XSS) vulnerabilities in GroupLink eHelpDesk 6.2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) NA_DISPLAYNAME parameter in helpdesk/user/rf_create.jsp and the (2) username and (3) LDAPError parameters in index2.jsp. | 4.3 |