CVE-2024-34698 | freescout-helpdesk freescout up to 1.8.138 /public/js/main.js getQueryParam prototype pollution

Inserito da Angelo Barbosa | Mag 13, 2024 | CVE

A vulnerability was found in freescout-helpdesk freescout up to 1.8.138. It has been declared as problematic. This vulnerability affects the function getQueryParam of the file /public/js/main.js. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability was named CVE-2024-34698. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34698 | freescout-helpdesk freescout up to 1.8.138 /public/js/main.js getQueryParam prototype pollution

Post correlati

CVE-2024-39714 | Veeam Service Provider Console up to 8.0.0.19552 File unrestricted upload (kb4649)

CVE-2024-32780 | E4J VikRentCar Plugin up to 1.3.2 on WordPress information disclosure

CVE-2024-7375 | SourceCodester Simple Realtime Quiz System 1.0 /my_quiz_result.php quiz sql injection

CVE-2024-45399 | Indico up to 3.3.3 next cross site scripting (GHSA-rrqf-w74j-24ff)