📦 Sysaid
by Sysaid
🔍 What is Sysaid?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
SysAid On-Prem versions up to 23.3.40 contain an unauthenticated XML External Entity (XXE) vulnerability in the Checkin processing functionality. This allows attackers to read files from the server an...
SysAid On-Prem versions up to 23.3.40 contain an unauthenticated XML External Entity (XXE) vulnerability in the lshw processing functionality. This allows attackers to read arbitrary files from the se...
This SQL injection vulnerability in SysAid allows attackers to execute arbitrary SQL commands on the database. It affects organizations using vulnerable versions of SysAid software, potentially exposi...
This authentication bypass vulnerability in SysAid allows attackers to access the system without valid credentials by navigating through specific JSP pages. Organizations using vulnerable versions of ...
This SQL injection vulnerability in SysAid ITIL allows authenticated attackers to execute arbitrary SQL commands via the filterText parameter in the /mobile/SelectUsers.jsp endpoint. Attackers can pot...
This vulnerability allows authenticated remote attackers to upload arbitrary files to SysAid ITIL servers via the /UploadPsIcon.jsp endpoint. Successful exploitation reveals the server-side file path,...
This SQL injection vulnerability in SysAid allows attackers to execute arbitrary SQL commands through multiple AssetManagement endpoints. It affects SysAid On-Premise installations, potentially enabli...