Описание
The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in GitHub repository polonel/trudesk prior to 1.2.2. This can lead to Denial of service.
Ссылки
- PatchThird Party Advisory
- ExploitThird Party Advisory
- PatchThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.2 (исключая)
cpe:2.3:a:trudesk_project:trudesk:*:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00585
Низкий
7.2 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
The trudesk application allows large characters to insert in the input field "Full Name" on the signup field which can allow attackers to cause a Denial of Service (DoS) via a crafted HTTP request in GitHub repository polonel/trudesk prior to 1.2.2. This can lead to Denial of service.
EPSS
Процентиль: 68%
0.00585
Низкий
7.2 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-190