📦 Freescout

This CVE describes a patch bypass vulnerability in FreeScout help desk software that allows authenticated users with file upload permissions to achieve Remote Code Execution (RCE) by uploading malicio...

FreeScout's authentication system uses a predictable, static token that never expires. If an attacker obtains the Laravel APP_KEY (commonly exposed), they can generate valid authentication tokens for ...

This vulnerability allows attackers with unactivated email invitations to self-activate blocked or deleted accounts in FreeScout help desk software. Attackers can gain unauthorized access to accounts ...

FreeScout versions before 1.8.179 have an unrestricted file upload vulnerability that allows attackers to upload malicious PHP files (.phtml, .phar extensions) to the web server. When Apache is used, ...

FreeScout versions before 1.8.128 contain an OS command injection vulnerability in the tools.php file that allows authenticated attackers with the App_Key to execute arbitrary commands on the server. ...

This vulnerability allows authenticated users to upload .htaccess or .user.ini files to FreeScout help desk systems, enabling remote code execution on Apache servers with AllowOverride All configurati...

CVE-2025-58163 is a remote code execution vulnerability in FreeScout help desk software where authenticated attackers with knowledge of the application's APP_KEY can execute arbitrary commands on the ...

CVE-2025-54366 is a critical deserialization vulnerability in FreeScout help desk software that allows authenticated attackers with knowledge of the APP_KEY to achieve remote code execution. The vulne...

FreeScout versions before 1.8.180 have a mass-assignment vulnerability in user record editing that allows authenticated users with edit permissions to change other users' passwords without proper vali...

CVE-2025-48475 is an authorization bypass vulnerability in FreeScout help desk software where authenticated users without mailbox or conversation access can view and edit all client data. This affects...

FreeScout help desk software versions before 1.8.180 contain an access control vulnerability where users with 'show_only_assigned_conversations' enabled can assign themselves to arbitrary conversation...

FreeScout versions before 1.8.178 contain a code injection vulnerability in the php_path parameter. Administrators can exploit this to execute arbitrary system commands via backticks, potentially lead...

A stored HTML injection vulnerability in FreeScout's email reception module allows unauthenticated attackers to inject malicious HTML content into emails processed by the application. This affects all...

A stored cross-site scripting (XSS) vulnerability in FreeScout's signature input field allows support agents to inject malicious JavaScript that executes when administrators view the signature. This b...

This vulnerability in FreeScout exposes SMTP server credentials to authenticated users through stack traces stored in the database and accessible via a specific endpoint. Attackers can steal these cre...

FreeScout versions before 1.8.181 contain a race condition vulnerability when administrators delete users. This could allow attackers to cause unexpected behavior or potentially escalate privileges. O...

FreeScout versions before 1.8.180 contain a cross-site scripting (XSS) vulnerability in the Session::flash and __ functions due to insufficient input validation and sanitization. This allows attackers...

CVE-2025-48488 is a Cross-Site Scripting vulnerability in FreeScout help desk software where deleting the .htaccess file allows attackers to upload malicious HTML files containing JavaScript. This aff...

FreeScout versions before 1.8.180 are vulnerable to stored XSS attacks through mail signature sanitization. Attackers can inject malicious HTML/JavaScript that executes when users view emails, potenti...

FreeScout versions before 1.8.180 have a mass assignment vulnerability during user creation that allows attackers to manipulate all fields in the User object. This affects all FreeScout instances runn...

This vulnerability in FreeScout allows authenticated users to view messages from conversations they shouldn't have access to when creating new conversations from existing messages. It affects all Free...

FreeScout help desk software prior to version 1.8.178 has an input validation vulnerability where special characters like carriage returns, newlines, and tabs can be passed to string formatting functi...