Smartertools Smartertrack — known CVE vulnerabilities
Every CVE whose affected-product data names Smartertools Smartertrack, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2022-24387 — CVSS 9.1 (critical): With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the…
CVE-2022-24384 — CVSS 8.8 (high): Cross-site Scripting (XSS) vulnerability in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
CVE-2022-24386 — CVSS 8.8 (high): Stored XSS in SmarterTools SmarterTrack This issue affects: SmarterTools SmarterTrack 100.0.8019.14010.
CVE-2020-36926 — CVSS 7.5 (high): SmarterTrack 7922 contains an information disclosure vulnerability in the Chat Management search form that reveals agent identification…
CVE-2022-24385 — CVSS 6.5 (medium): A Direct Object Access vulnerability in SmarterTools SmarterTrack leads to information disclosure This issue affects: SmarterTools…
CVE-2009-4994 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in frmKBSearch.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject…
CVE-2009-4995 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject…