CVE-2026-40569 | freescout-help-desk freescout up to 1.8.212 Mailbox Connection Settings Endpoint MailboxesController.php connectionIncomingSave access control (GHSA-hmqm-33wp-858j)

A vulnerability classified as critical has been found in freescout-help-desk freescout up to 1.8.212. This affects the function connectionIncomingSave of the file app/Http/Controllers/MailboxesController.php of the component Mailbox Connection Settings Endpoint. This manipulation causes improper access controls.

This vulnerability is registered as CVE-2026-40569. Remote exploitation of the attack is possible. No exploit is available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More