Sysaid

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-43974 1Sysaid 1Itil Nov 21, 2024 Jan 11, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register end users anonymously, but does not respect the server-side setting that determines if anonymous users are allowed to regis...Show more An issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register end users anonymously, but does not respect the server-side setting that determines if anonymous users are allowed to register new accounts. Configuring the server-side setting to disable anonymous user registration only hides the client-side registration form. An attacker can still post registration data to create new accounts without prior authentication.Show less
CVE-2021-43973 1Sysaid 1Sysaid Nov 21, 2024 Jan 11, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 An unrestricted file upload vulnerability in /UploadPsIcon.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to upload an arbitrary file via the file parameter in the HTTP POST body. A successful requ...Show more An unrestricted file upload vulnerability in /UploadPsIcon.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to upload an arbitrary file via the file parameter in the HTTP POST body. A successful request returns the absolute, server-side filesystem path of the uploaded file.Show less
CVE-2021-43972 1Sysaid 1Sysaid Nov 21, 2024 Jan 11, 2022 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 An unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web root (with an arbitrar...Show more An unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web root (with an arbitrary filename) via the tempFile and fileName parameters in the HTTP POST body.Show less
CVE-2021-43971 1Sysaid 1Sysaid Nov 21, 2024 Jan 11, 2022 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 A SQL injection vulnerability in /mobile/SelectUsers.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to execute arbitrary SQL commands via the filterText parameter.
CVE-2021-36721 1Sysaid 1Application Programming Interface Nov 21, 2024 Dec 14, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Sysaid API User Enumeration - Attacker sending requests to specific api path without any authorization before 21.3.60 version could get users names from the LDAP server.
CVE-2021-31862 1Sysaid 1Sysaid Nov 21, 2024 Oct 29, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 SysAid 20.4.74 allows XSS via the KeepAlive.jsp stamp parameter without any authentication.
CVE-2021-30486 1Sysaid 1Sysaid Nov 21, 2024 Jul 22, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 SysAid 20.3.64 b14 is affected by Blind and Stacker SQL injection via AssetManagementChart.jsp (GET computerID), AssetManagementChart.jsp (POST group1), AssetManagementList.jsp (GET computerID or group1), or AssetManagem...Show more SysAid 20.3.64 b14 is affected by Blind and Stacker SQL injection via AssetManagementChart.jsp (GET computerID), AssetManagementChart.jsp (POST group1), AssetManagementList.jsp (GET computerID or group1), or AssetManagementSummary.jsp (GET group1).Show less
CVE-2021-30049 1Sysaid 1Sysaid Nov 21, 2024 Jul 22, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 SysAid 20.3.64 b14 is affected by Cross Site Scripting (XSS) via a /KeepAlive.jsp?stamp= URI.
CVE-2020-13168 1Sysaid 2Sysaid On Premises Sysaidsy On Premises Nov 21, 2024 Oct 2, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 SysAid 20.1.11b26 allows reflected XSS via the ForgotPassword.jsp accountid parameter.
CVE-2020-10569 1Sysaid 1On Premise Nov 21, 2024 Apr 21, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the...Show more SysAid On-Premise 20.1.11, by default, allows the AJP protocol port, which is vulnerable to a GhostCat attack. Additionally, it allows unauthenticated access to upload files, which can be used to execute commands on the system by chaining it with a GhostCat attack. NOTE: This may be a duplicate of CVE-2020-1938Show less
CVE-2015-3001 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 SysAid Help Desk before 15.2 uses a hardcoded password of Password1 for the sa SQL Server Express user account, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of th...Show more SysAid Help Desk before 15.2 uses a hardcoded password of Password1 for the sa SQL Server Express user account, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.Show less
CVE-2015-3000 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 7.8 HIGH· v2 SysAid Help Desk before 15.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of nested entity references in an XML document to (1) /agententry, (2) /rdsmonitoringrespo...Show more SysAid Help Desk before 15.2 allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of nested entity references in an XML document to (1) /agententry, (2) /rdsmonitoringresponse, or (3) /androidactions, aka an XML Entity Expansion (XEE) attack.Show less
CVE-2015-2999 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Multiple SQL injection vulnerabilities in SysAid Help Desk before 15.2 allow remote administrators to execute arbitrary SQL commands via the (1) groupFilter parameter in an AssetDetails report to /genericreport, customSQ...Show more Multiple SQL injection vulnerabilities in SysAid Help Desk before 15.2 allow remote administrators to execute arbitrary SQL commands via the (1) groupFilter parameter in an AssetDetails report to /genericreport, customSQL parameter in a (2) TopAdministratorsByAverageTimer report or an (3) ActiveRequests report to /genericreport, (4) dir parameter to HelpDesk.jsp, or (5) grantSQL parameter to RFCGantt.jsp.Show less
CVE-2015-2998 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 SysAid Help Desk before 15.2 uses a hardcoded encryption key, which makes it easier for remote attackers to obtain sensitive information, as demonstrated by decrypting the database password in WEB-INF/conf/serverConf.xml...Show more SysAid Help Desk before 15.2 uses a hardcoded encryption key, which makes it easier for remote attackers to obtain sensitive information, as demonstrated by decrypting the database password in WEB-INF/conf/serverConf.xml.Show less
CVE-2015-2997 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 SysAid Help Desk before 15.2 allows remote attackers to obtain sensitive information via an invalid value in the accountid parameter to getAgentLogFile, as demonstrated by a large directory traversal sequence, which reve...Show more SysAid Help Desk before 15.2 allows remote attackers to obtain sensitive information via an invalid value in the accountid parameter to getAgentLogFile, as demonstrated by a large directory traversal sequence, which reveals the installation path in an error message.Show less
CVE-2015-2996 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 8.5 HIGH· v2 Multiple directory traversal vulnerabilities in SysAid Help Desk before 15.2 allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the fileName parameter to getGfiUpgradeFile or (2) cause a denial of s...Show more Multiple directory traversal vulnerabilities in SysAid Help Desk before 15.2 allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the fileName parameter to getGfiUpgradeFile or (2) cause a denial of service (CPU and memory consumption) via a .. (dot dot) in the fileName parameter to calculateRdsFileChecksum.Show less
CVE-2015-2995 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The RdsLogsEntry servlet in SysAid Help Desk before 15.2 does not properly check file extensions, which allows remote attackers to upload and execute arbitrary files via a NULL byte after the extension, as demonstrated b...Show more The RdsLogsEntry servlet in SysAid Help Desk before 15.2 does not properly check file extensions, which allows remote attackers to upload and execute arbitrary files via a NULL byte after the extension, as demonstrated by a .war%00 file.Show less
CVE-2015-2994 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 6.5 MEDIUM· v2 Unrestricted file upload vulnerability in ChangePhoto.jsp in SysAid Help Desk before 15.2 allows remote administrators to execute arbitrary code by uploading a file with a .jsp extension, then accessing it via a direct r...Show more Unrestricted file upload vulnerability in ChangePhoto.jsp in SysAid Help Desk before 15.2 allows remote administrators to execute arbitrary code by uploading a file with a .jsp extension, then accessing it via a direct request to the file in icons/user_photo/.Show less
CVE-2015-2993 1Sysaid 1Sysaid May 6, 2026 Jun 8, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 SysAid Help Desk before 15.2 does not properly restrict access to certain functionality, which allows remote attackers to (1) create administrator accounts via a crafted request to /createnewaccount or (2) write to arbit...Show more SysAid Help Desk before 15.2 does not properly restrict access to certain functionality, which allows remote attackers to (1) create administrator accounts via a crafted request to /createnewaccount or (2) write to arbitrary files via the fileName parameter to /userentry.Show less
CVE-2014-9436 1Sysaid 1Sysaid May 6, 2026 Jan 2, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Absolute path traversal vulnerability in SysAid On-Premise before 14.4.2 allows remote attackers to read arbitrary files via a \\\\ (four backslashes) in the fileName parameter to getRdsLogFile.

Previous 12