📦 Django Helpdesk

CVE-2021-3994 is a cross-site scripting (XSS) vulnerability in django-helpdesk that allows attackers to inject malicious scripts into web pages viewed by other users. This affects all users of vulnera...

This vulnerability in django-helpdesk allows sensitive data exposure due to improper file permission settings. The os.umask(0) call in models.py creates files with overly permissive permissions, poten...