CVE-2022-40323
https://notcve.org/view.php?id=CVE-2022-40323
SysAid Help Desk before 22.1.65 allows XSS in the Password Services module, aka FR# 67241. SysAid Help Desk versiones anteriores a 22.1.65, permite un ataque de tipo XSS en el módulo Password Services, también se conoce como FR# 67241 • https://documentation.sysaid.com/docs/22165-release-notes • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2022-40322
https://notcve.org/view.php?id=CVE-2022-40322
SysAid Help Desk before 22.1.65 allows XSS, aka FR# 66542 and 65579. SysAid Help Desk versiones anteriores a 22.1.65, permite un ataque de tipo XSS, también se conoce como FR# 66542 y 65579 • https://documentation.sysaid.com/docs/22165-release-notes • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2007-4716
https://notcve.org/view.php?id=CVE-2007-4716
Multiple SQL injection vulnerabilities in PHD Help Desk before 1.31 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. Múltiples vulnerabilidades de inyección SQL en PHD Help Desk before 1.31 permite a atacantes remotos ejecutar comandos sql de su elección mediante vectores no especificados. • http://secunia.com/advisories/26688 http://sourceforge.net/forum/forum.php?forum_id=731460 http://sourceforge.net/project/shownotes.php?release_id=536503 http://sourceforge.net/project/shownotes.php?release_id=536503&group_id=170208 http://www.osvdb.org/36789 http://www.securityfocus.com/bid/25517 http://www.vupen.com/english/advisories/2007/3039 https://exchange.xforce.ibmcloud.com/vulnerabilities/36431 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •