Helpdesk Pro by Ossolution Team [com_helpdeskpro], before 1.4.0, multiple vulns
Vulnerabilities:
- Direct Object References
- Cross-Site Scripting
- SQL Injection
- Local file disclosure/Path traversal
- File Upload
Fixed: vulnerability fixed in version 1.4.0
Developer's notice: https://joomdonation.com/forum/helpdesk-pro/48029-helpdesk-pro-1-4-0-security-released.html
Read more https://vel.joomla.org/resolved/1724-helpdesk-pro-1-4-0-other