Wyomind

wyomind

3 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-33353 1Wyomind 1Help Desk Mar 4, 2025 Mar 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Directory Traversal vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via the file attachment directory setting.
CVE-2021-33352 1Wyomind 1Help Desk Mar 5, 2025 Mar 8, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in Wyomind Help Desk Magento 2 extension v.1.3.6 and before fixed in v.1.3.7 allows attacker to execute arbitrary code via a phar file upload in the ticket message field.
CVE-2021-33351 1Wyomind 1Help Desk Mar 5, 2025 Mar 8, 2023 N/A· v4 9.0 CRITICAL· v3 N/A· v2 Cross Site Scripting Vulnerability in Wyomind Help Desk Magento 2 extension v.1.3.6 and before and fixed in v.1.3.7 allows attackers to escalte privileges via a crafted payload in the ticket message field.