CVE-2026-23752 | GFI HelpDesk up to 4.99.8 Groups Page companyname cross site scripting

A vulnerability, which was classified as problematic, was found in GFI HelpDesk up to 4.99.8. Affected is an unknown function of the component Groups Page. Such manipulation of the argument companyname leads to cross site scripting.

This vulnerability is documented as CVE-2026-23752. The attack can be executed remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More