VYPR

WebHelpDesk

by SolarWinds

CVEs (3)

  • CVE-2026-28299HigJun 2, 2026
    risk 0.53cvss 8.2epss 0.00

    SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory.

  • CVE-2021-35254Mar 25, 2022
    risk 0.00cvss epss 0.01

    SolarWinds received a report of a vulnerability related to an input that was not sanitized in WebHelpDesk. SolarWinds has removed this input field to prevent the misuse of this input in the future.

  • CVE-2019-20002Apr 27, 2020
    risk 0.00cvss epss 0.01

    Formula Injection exists in the export feature in SolarWinds WebHelpDesk 12.7.1 via a value (provided by a low-privileged user in the Subject field of a help request form) that is mishandled in a TicketActions/view?tab=group TSV export by an admin user.