VYPR

Help Desk

by Sysaid

CVEs (1)

  • CVE-2015-2999Jun 8, 2015
    risk 0.03cvss epss 0.02

    Multiple SQL injection vulnerabilities in SysAid Help Desk before 15.2 allow remote administrators to execute arbitrary SQL commands via the (1) groupFilter parameter in an AssetDetails report to /genericreport, customSQL parameter in a (2) TopAdministratorsByAverageTimer report…