Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
HelpDezk Community improper authorization
Vulnerability Description
Improper authorization vulnerability in HelpDezk Community affecting version 1.1.10. This vulnerability could allow a remote attacker to access the platform without authentication and retrieve personal data via the jsonGrid parameter.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
Vulnerability Type
授权机制不恰当
Vulnerability Title
HelpDezk 安全漏洞
Vulnerability Description
HelpDezk是HelpDezk公司的一款功能强大的软件。于管理请求/事件。 HelpDezk 1.1.10版本存在安全漏洞,该漏洞源于允许远程攻击者无需身份验证即可访问平台并通过 jsonGrid 参数检索个人数据。
CVSS Information
N/A
Vulnerability Type
N/A