Every CVE whose affected-product data names Licensepal Arcticdesk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2014-100035 — CVSS 7.5 (high): SQL injection vulnerability in the ticket grid in the admin interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to…
CVE-2014-100033 — CVSS 5.0 (medium): Directory traversal vulnerability in LicensePal ArcticDesk before 1.2.5 allows remote attackers to read arbitrary files via unspecified…
CVE-2014-100034 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the frontend interface in LicensePal ArcticDesk before 1.2.5 allows remote attackers to inject…