CVE-2023-42234

Name of the Vulnerable Software and Affected Versions Pat Infinite Solutions HelpdeskAdvanced versions 11.0.33 and earlier

Description The issue is related to Cross Site Request Forgery (CSRF) via the WSCView function. This allows for unauthorized actions to be performed on behalf of a user without their knowledge or consent.

Recommendations For versions 11.0.33 and earlier, consider disabling the WSCView function as a temporary workaround until a patch is available. Restrict access to the WSCView function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.