Vulnerabilities > Trudesk Project > Trudesk > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-24 | CVE-2021-45785 | Cross-Site Request Forgery (CSRF) vulnerability in Trudesk Project Trudesk 1.1.11 TruDesk Help Desk/Ticketing Solution v1.1.11 is vulnerable to a Cross-Site Request Forgery (CSRF) attack which would allow an attacker to restart the server, causing a DoS attack. | 6.5 |
| 2023-03-29 | CVE-2023-26982 | Cross-site Scripting vulnerability in Trudesk Project Trudesk 1.2.6 Trudesk v1.2.6 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Add Tags parameter under the Create Ticket function. | 5.4 |
| 2022-09-29 | CVE-2022-1719 | Unspecified vulnerability in Trudesk Project Trudesk Reflected XSS on ticket filter function in GitHub repository polonel/trudesk prior to 1.2.2. | 5.4 |
| 2022-05-31 | CVE-2022-1947 | Unspecified vulnerability in Trudesk Project Trudesk Use of Incorrect Operator in GitHub repository polonel/trudesk prior to 1.2.3. | 6.5 |
| 2022-05-31 | CVE-2022-1893 | Unspecified vulnerability in Trudesk Project Trudesk Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository polonel/trudesk prior to 1.2.3. | 5.3 |
| 2022-05-31 | CVE-2022-1926 | Integer Overflow or Wraparound vulnerability in Trudesk Project Trudesk Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.3. | 4.9 |
| 2022-05-20 | CVE-2022-1803 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Trudesk Project Trudesk Improper Restriction of Rendered UI Layers or Frames in GitHub repository polonel/trudesk prior to 1.2.2. | 6.9 |
| 2022-05-20 | CVE-2022-1754 | Integer Overflow or Wraparound vulnerability in Trudesk Project Trudesk Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.2. | 6.5 |
| 2022-05-16 | CVE-2022-1728 | Integer Overflow or Wraparound vulnerability in Trudesk Project Trudesk Allowing long password leads to denial of service in polonel/trudesk in GitHub repository polonel/trudesk prior to 1.2.2. | 6.5 |
| 2022-05-12 | CVE-2022-1044 | Insecure Storage of Sensitive Information vulnerability in Trudesk Project Trudesk Sensitive Data Exposure Due To Insecure Storage Of Profile Image in GitHub repository polonel/trudesk prior to v1.2.1. | 6.5 |