vendor:
Helpdesk Pro
by:
Simon Rawet, Kristian Varnai, Gregor Mynarsky
8.1
CVSS
HIGH
Multiple Vulnerabilities
862, 79, 89, 22, 434
CWE
Product Name: Helpdesk Pro
Affected Version From: < 1.4.0
Affected Version To: 1.4.2000
Patch Exists: YES
Related CWE: CVE-2015-4071, CVE-2015-4072, CVE-2015-4073, CVE-2015-4074, CVE-2015-4075
CPE: a:joomla:helpdesk_pro:1.3.0
Tags: lfi,packetstorm,edb,cve,cve2015,joomla,plugin
CVSS Metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Nuclei Metadata: {'max-request': 1, 'framework': 'joomla\\!', 'vendor': 'helpdesk_pro_project', 'product': 'helpdesk_pro'}
Platforms Tested:
2015
Joomla! plugin Helpdesk Pro < 1.4.0
The Joomla! plugin Helpdesk Pro version prior to 1.4.0 is vulnerable to multiple exploits including direct object references, XSS, SQL injection, local file disclosure/path traversal, and file upload vulnerabilities. These vulnerabilities allow an attacker to read other users' support tickets, execute malicious scripts, manipulate the database, and disclose local files on the server. The vulnerabilities have been assigned the following CVEs: CVE-2015-4071 (Direct Object References), CVE-2015-4072 (Multiple XSS), CVE-2015-4073 (SQL Injection), CVE-2015-4074 (Local file disclosure/Path traversal), and CVE-2015-4075 (File Upload).
Mitigation:
Update to version 1.4.0 or later. No official testing has been done on earlier versions, but all versions prior to 1.4.0 are suspected to be vulnerable.