CVE-2026-41194 | freescout-help-desk freescout up to 1.8.214 oauth-disconnect cross-site request forgery (GHSA-6rvw-fhqx-cfv5)

Inserito da Angelo Barbosa | Apr 21, 2026 | CVE

A vulnerability was found in freescout-help-desk freescout up to 1.8.214. It has been rated as problematic. Impacted is an unknown function of the file /mailbox/oauth-disconnect/. This manipulation causes cross-site request forgery.

This vulnerability is handled as CVE-2026-41194. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2026-41194 | freescout-help-desk freescout up to 1.8.214 oauth-disconnect cross-site request forgery (GHSA-6rvw-fhqx-cfv5)

Post correlati

CVE-2024-42978 | Tenda FH1206 02.03.01.35 HTTP /goform/telnet handler command injection

CVE-2024-3936 | The Post Grid Plugin up to 7.6.1 on WordPress authorization

CVE-2023-53296 | Linux Kernel up to 6.2.10 net/sctp/sm_sideeffect.c wait_for_sndbuf null pointer dereference

CVE-2025-7952 | TOTOLINK T6 4.1.5cu.748 MQTT Packet wireless.so ckeckKeepAlive command injection