Stuart Shanahan

1 exploit Active since Nov 2024
CVE-2023-52268 NOMISEC CRITICAL WORKING POC
FreeScout End-User Portal <1.0.65 - Auth Bypass
The End-User Portal module before 1.0.65 for FreeScout sometimes allows an attacker to authenticate as an arbitrary user because a session token can be sent to the /auth endpoint. NOTE: this module is not part of freescout-helpdesk/freescout on GitHub.
CVSS 9.1