Vulnerabilities > Truedesk

DATE CVE VULNERABILITY TITLE RISK
2023-07-26 CVE-2022-31455 Cross-site Scripting vulnerability in Truedesk 1.2.2
* A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into a user chat box.
network
low complexity
truedesk CWE-79
6.1
2023-07-26 CVE-2022-31456 Cross-site Scripting vulnerability in Truedesk 1.2.2
A cross-site scripting (XSS) vulnerability in Truedesk v1.2.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the team name parameter.
network
low complexity
truedesk CWE-79
6.1