Vulnerabilities > Qnap > Helpdesk > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-06 | CVE-2024-27125 | Cross-site Scripting vulnerability in Qnap Helpdesk A cross-site scripting (XSS) vulnerability has been reported to affect Helpdesk. | 4.8 |
| 2020-09-11 | CVE-2018-19948 | Cross-Site Request Forgery (CSRF) vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.3 |
| 2020-09-11 | CVE-2018-19947 | Information Exposure Through an Error Message vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.0 |
| 2020-09-11 | CVE-2018-19946 | Improper Certificate Validation vulnerability in Qnap Helpdesk The vulnerability have been reported to affect earlier versions of Helpdesk. | 4.3 |
| 2020-07-01 | CVE-2020-2500 | Use of Hard-coded Credentials vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to get control of QNAP Kayako service. | 6.4 |
| 2019-12-04 | CVE-2018-0728 | Improper Privilege Management vulnerability in Qnap Helpdesk This improper access control vulnerability in Helpdesk allows attackers to access the system logs. | 5.0 |