Vulnerabilities > Zammad > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-07 | CVE-2021-42093 | Unspecified vulnerability in Zammad An issue was discovered in Zammad before 4.1.1. | 7.2 |
| 2021-06-28 | CVE-2021-35299 | Information Exposure Through Log Files vulnerability in Zammad Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive information via email connection configuration probing. | 7.5 |
| 2020-12-28 | CVE-2020-29160 | Missing Authorization vulnerability in Zammad An issue was discovered in Zammad before 3.5.1. | 7.5 |
| 2020-12-28 | CVE-2020-26032 | Server-Side Request Forgery (SSRF) vulnerability in Zammad An SSRF issue was discovered in Zammad before 3.4.1. | 7.5 |
| 2020-03-05 | CVE-2020-10101 | Improper Handling of Exceptional Conditions vulnerability in Zammad An issue was discovered in Zammad 3.0 through 3.2. | 7.5 |
| 2020-03-05 | CVE-2020-10096 | Information Exposure vulnerability in Zammad An issue was discovered in Zammad 3.0 through 3.2. | 7.5 |
| 2017-03-13 | CVE-2017-6081 | Cross-Site Request Forgery (CSRF) vulnerability in Zammad A CSRF issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1. | 8.8 |