Freescout-Help-Desk Freescout vulnerabilities
62 known vulnerabilities affecting freescout-help-desk/freescout.
Total CVEs
62
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL8HIGH24MEDIUM28LOW2
Vulnerabilities
Page 4 of 4
CVE-2025-48479P4LOWCVSS 2.7fixed in 1.8.1802025-05-30
CVE-2025-48479 [LOW] CWE-841 CVE-2025-48479: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the laravel-
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the laravel-translation-manager package does not correctly validate user input, enabling the deletion of any directory, given sufficient access rights. This issue has been patched in version 1.8.180.
nvd
CVE-2025-48480P4LOWCVSS 2.7fixed in 1.8.1802025-05-30
CVE-2025-48480 [LOW] CWE-841 CVE-2025-48480: FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, an authorize
FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, an authorized user with the administrator role or with the privilege User::PERM_EDIT_USERS can create a user, specifying the path to the user's avatar ../.htaccess during creation, and then delete the user's avatar, resulting in the deletion of the file .htaccess in
nvd
← Previous4 / 4