Vulnerabilities > Trudesk Project

DATE CVE VULNERABILITY TITLE RISK
2022-09-29 CVE-2022-1718 Integer Overflow or Wraparound vulnerability in Trudesk Project Trudesk
The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in GitHub repository polonel/trudesk prior to 1.2.2.
network
low complexity
trudesk-project CWE-190
7.5
2022-09-29 CVE-2022-1719 Cross-site Scripting vulnerability in Trudesk Project Trudesk
Reflected XSS on ticket filter function in GitHub repository polonel/trudesk prior to 1.2.2.
network
low complexity
trudesk-project CWE-79
5.4
2022-06-20 CVE-2022-2128 Unrestricted Upload of File with Dangerous Type vulnerability in Trudesk Project Trudesk
Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.4.
network
low complexity
trudesk-project CWE-434
7.5
2022-06-20 CVE-2022-2023 Improper Privilege Management vulnerability in Trudesk Project Trudesk
Incorrect Use of Privileged APIs in GitHub repository polonel/trudesk prior to 1.2.4.
network
low complexity
trudesk-project CWE-269
critical
9.8
2022-05-31 CVE-2022-1947 Unspecified vulnerability in Trudesk Project Trudesk
Use of Incorrect Operator in GitHub repository polonel/trudesk prior to 1.2.3.
network
low complexity
trudesk-project
4.0
2022-05-31 CVE-2022-1808 Unspecified vulnerability in Trudesk Project Trudesk
Execution with Unnecessary Privileges in GitHub repository polonel/trudesk prior to 1.2.3.
network
low complexity
trudesk-project
6.5
2022-05-31 CVE-2022-1893 Improper Cross-boundary Removal of Sensitive Data vulnerability in Trudesk Project Trudesk
Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository polonel/trudesk prior to 1.2.3.
network
low complexity
trudesk-project CWE-212
5.3
2022-05-31 CVE-2022-1926 Integer Overflow or Wraparound vulnerability in Trudesk Project Trudesk
Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.3.
network
low complexity
trudesk-project CWE-190
4.0
2022-05-31 CVE-2022-1931 Improper Synchronization vulnerability in Trudesk Project Trudesk
Incorrect Synchronization in GitHub repository polonel/trudesk prior to 1.2.3.
network
low complexity
trudesk-project CWE-662
5.5
2022-05-21 CVE-2022-1752 Unrestricted Upload of File with Dangerous Type vulnerability in Trudesk Project Trudesk
Unrestricted Upload of File with Dangerous Type in GitHub repository polonel/trudesk prior to 1.2.2.
6.0