CVE-2026-40565 | freescout-help-desk freescout up to 1.8.212 HTML Attribute app/Misc/Helper.php linkify HTML injection (GHSA-49pm-xwqj-vwjp)

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability was found in freescout-help-desk freescout up to 1.8.212. It has been rated as problematic. This issue affects the function linkify of the file app/Misc/Helper.php of the component HTML Attribute Handler. The manipulation leads to HTML injection.

This vulnerability is referenced as CVE-2026-40565. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.

CVE-2026-40565 | freescout-help-desk freescout up to 1.8.212 HTML Attribute app/Misc/Helper.php linkify HTML injection (GHSA-49pm-xwqj-vwjp)

Post correlati

CVE-2024-7630 | Relevanssi Plugin up to 4.22.2 on WordPress information disclosure

CVE-2026-1051 | Newsletter Plugin up to 9.1.0 on WordPress hook_newsletter_action cross-site request forgery

CVE-2025-2116 | Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System File Protocol imageProxy.do server-side request forgery

CVE-2024-2329 | Netentsec NS-ASG Application Security Gateway 6.3 list_resource_icon.php IconId sql injection