Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-33351

Disclosure Date: March 08, 2023 (last updated October 08, 2023)
Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0