CVE-2026-23757 | GFI HelpDesk up to 4.99.9 Reports SWIFT_Report::Create report title cross site scripting

A vulnerability was found in GFI HelpDesk up to 4.99.9 and classified as problematic. Affected by this issue is the function SWIFT_Report::Create of the component Reports Module. Executing a manipulation of the argument report title can lead to cross site scripting.

This vulnerability appears as CVE-2026-23757. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More