CVE-2026-40565 | freescout-help-desk freescout up to 1.8.212 HTML Attribute app/Misc/Helper.php linkify HTML injection (GHSA-49pm-xwqj-vwjp)

A vulnerability was found in freescout-help-desk freescout up to 1.8.212. It has been rated as problematic. This issue affects the function linkify of the file app/Misc/Helper.php of the component HTML Attribute Handler. The manipulation leads to HTML injection.

This vulnerability is referenced as CVE-2026-40565. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More