Vulnerabilities > Qnap > Helpdesk > 2.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-06 | CVE-2024-27125 | Cross-site Scripting vulnerability in Qnap Helpdesk A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. | 4.8 |
| 2021-06-11 | CVE-2021-28814 | Unspecified vulnerability in Qnap Helpdesk An improper access control vulnerability has been reported to affect QNAP NAS. | 8.8 |
| 2021-02-03 | CVE-2020-2507 | OS Command Injection vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of QTS. | 9.8 |
| 2021-02-03 | CVE-2020-2506 | Unspecified vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of QTS. | 9.8 |
| 2020-09-11 | CVE-2018-19948 | Cross-Site Request Forgery (CSRF) vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 6.5 |
| 2020-09-11 | CVE-2018-19947 | Information Exposure Through an Error Message vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 6.5 |
| 2020-09-11 | CVE-2018-19946 | Improper Certificate Validation vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 5.9 |
| 2020-07-01 | CVE-2020-2500 | Use of Hard-coded Credentials vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. | 6.5 |
| 2019-12-04 | CVE-2018-0728 | Improper Privilege Management vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to access the system logs. | 7.5 |