Every CVE whose affected-product data names Gfi Helpdesk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2026-23756 — CVSS 5.4 (medium): GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the Troubleshooter module where the subject POST…
CVE-2026-23757 — CVSS 5.4 (medium): GFI HelpDesk before 4.99.10 contains a stored cross-site scripting vulnerability in the Reports module where the title parameter is passed…
CVE-2026-23758 — CVSS 5.4 (medium): GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the ticket subject field that allows authenticated staff…
CVE-2026-23752 — CVSS 4.8 (medium): GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the template group creation and editing functionality…
CVE-2026-23753 — CVSS 4.8 (medium): GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the language management functionality where the charset…