CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1803 – Improper Restriction of Rendered UI Layers or Frames in polonel/trudesk
https://notcve.org/view.php?id=CVE-2022-1803
Improper Restriction of Rendered UI Layers or Frames in GitHub repository polonel/trudesk prior to 1.2.2. Una Restricción Inapropiada de Capas o Marcos de Interfaz de Usuario Renderizados en el repositorio de GitHub polonel/trudesk versiones anteriores a 1.2.2 • https://github.com/polonel/trudesk/commit/6ea9db7a5cf300e3cbf0eab7e1d6da1155a2f7f8 https://huntr.dev/bounties/47cc6621-2474-40f9-ab68-3cf62389a124 • CWE-1021: Improper Restriction of Rendered UI Layers or Frames •
CVSS: 9.9EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1770 – Improper Privilege Management in polonel/trudesk
https://notcve.org/view.php?id=CVE-2022-1770
Improper Privilege Management in GitHub repository polonel/trudesk prior to 1.2.2. Una Administración Inadecuada de Privilegios en el repositorio de GitHub polonel/trudesk versiones anteriores a 1.2.2 • https://github.com/polonel/trudesk/commit/889876f66c9a5b28f019258e329310c31d72cbd2 https://huntr.dev/bounties/74a252a2-8bf6-4f88-a180-b90338a239fa • CWE-269: Improper Privilege Management •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1754 – Integer Overflow or Wraparound in polonel/trudesk
https://notcve.org/view.php?id=CVE-2022-1754
Integer Overflow or Wraparound in GitHub repository polonel/trudesk prior to 1.2.2. Un Desbordamiento de Enteros o Wraparound en el repositorio de GitHub polonel/trudesk versiones anteriores a 1.2.2 • https://github.com/polonel/trudesk/commit/e836d04d16787c2c9c72e7bf011cf396d1f73c19 https://huntr.dev/bounties/2f65af7c-a74b-46a6-8847-5db6785f1cf2 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1728 – Allowing long password leads to denial of service in polonel/trudesk in polonel/trudesk
https://notcve.org/view.php?id=CVE-2022-1728
Allowing long password leads to denial of service in polonel/trudesk in GitHub repository polonel/trudesk prior to 1.2.2. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications. Permitiendo una contraseña larga conlleva a una denegación de servicio en polonel/trudesk en el repositorio de GitHub polonel/trudesk versiones anteriores a 1.2.2. Esta vulnerabilidad puede ser abusada al hacer un ataque DDoS por el cual usuarios genuinos no podrán acceder a los recursos/aplicaciones • https://github.com/polonel/trudesk/commit/e836d04d16787c2c9c72e7bf011cf396d1f73c19 https://huntr.dev/bounties/3c6cb129-6995-4722-81b5-af052572b519 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-1718 – The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in polonel/trudesk
https://notcve.org/view.php?id=CVE-2022-1718
The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in GitHub repository polonel/trudesk prior to 1.2.2. This can lead to Denial of service. La aplicación trudesk permite insertar caracteres grandes en el campo de entrada "Full Name" en el campo de registro, lo que puede permitir a atacantes causar una Denegación de Servicio (DoS) por medio de una petición HTTP diseñada en el repositorio de GitHub polonel/trudesk versiones anteriores a 1.2.2. Esto puede conllevar a una denegación de servicio • https://github.com/polonel/trudesk/commit/87e231e04495fb705fe1e03cb56fc4136bafe895 https://huntr.dev/bounties/1ff8afe4-6ff7-45aa-a652-d8aac7e5be7e • CWE-190: Integer Overflow or Wraparound •