CVE-2026-40567 | freescout-help-desk freescout up to 1.8.212 From {%customer.fullName%} cross site scripting (GHSA-q8v4-v62h-5528)

A vulnerability marked as problematic has been reported in freescout-help-desk freescout up to 1.8.212. Affected by this vulnerability is an unknown functionality of the component From Handler. The manipulation of the argument {%customer.fullName%} leads to basic cross site scripting.

This vulnerability is listed as CVE-2026-40567. The attack may be initiated remotely. There is no available exploit.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More