GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Description

GFI HelpDesk before 4.99.9 contains a stored cross-site scripting vulnerability in the ticket subject field that allows authenticated staff members to inject malicious JavaScript by manipulating the editsubject POST parameter. Attackers can inject XSS payloads through inadequate sanitization in Controller_Ticket.EditSubmit() that bypass the incomplete SanitizeForXSS() method to execute arbitrary JavaScript when other staff members or administrators view the affected ticket.

Basic Information

ID CVE-2026-23758

Source VulnCheck

Published Apr 20, 2026 at 17:30

Modified Apr 20, 2026 at 17:45

Affected Product

Vendor GFI Software

Product HelpDesk

Affected Versions GFI Software HelpDesk 0

CWE Classification

CWE-79

References

{
    "lastseen": "",
    "description": "GFI HelpDesk before\u00a04.99.9 contains a stored cross-site scripting vulnerability in the ticket subject field that allows authenticated staff members to inject malicious JavaScript by manipulating the editsubject POST parameter. Attackers can inject XSS payloads through inadequate sanitization in Controller_Ticket.EditSubmit() that bypass the incomplete SanitizeForXSS() method to execute arbitrary JavaScript when other staff members or administrators view the affected ticket.",
    "published": "2026-04-20T17:30:06.853Z",
    "modified": "2026-04-20T17:45:55.788Z",
    "type": "cve",
    "title": "GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter",
    "source": "VulnCheck",
    "references": "https://gfi.ai/products-and-solutions/email-and-messaging-solutions/helpdesk/resources/product-releases\nhttps://www.vulncheck.com/advisories/gfi-helpdesk-stored-xss-via-editsubject-parameter",
    "id": "CVE-2026-23758",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "GFI Software HelpDesk 0",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "HelpDesk",
    "version": "0",
    "vendor": "GFI Software",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

GFI HelpDesk < 4.99.9 Stored XSS via editsubject Parameter_CVE-2026-23758