Vulnerabilities > Readydesk > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-08-26 | CVE-2016-5050 | Unrestricted Upload of File with Dangerous Type vulnerability in Readydesk 9.1 Unrestricted file upload vulnerability in chat/sendfile.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary code by uploading and requesting a .aspx file. | 9.8 |
| 2016-08-26 | CVE-2016-5048 | SQL Injection vulnerability in Readydesk 9.1 SQL injection vulnerability in chat/staff/default.aspx in ReadyDesk 9.1 allows remote attackers to execute arbitrary SQL commands via the user name field. | 9.8 |