VYPR

Helpdesk

by Frappe

Source repositories

CVEs (2)

  • CVE-2024-34990CriJun 19, 2024
    risk 0.65cvss 10.0epss 0.01

    In the module "Help Desk - Customer Support Management System" (helpdesk) up to version 2.4.0 from FME Modules for PrestaShop, a customer can upload .php files. Methods `HelpdeskHelpdeskModuleFrontController::submitTicket()` and `HelpdeskHelpdeskModuleFrontController::replyTicket…

  • CVE-2025-10655HigDec 9, 2025
    risk 0.57cvss 8.8epss 0.00

    SQL Injection in Frappe HelpDesk in the dashboard get_dashboard_data due to unsafe concatenation of user-controlled parameters into dynamic SQL statements.This issue affects Frappe HelpDesk: 1.14.0.