A missing authorization check in FreeScout's ThreadPolicy::delete method allows former team members to permanently delete internal notes from conversations even after their mailbox access has been revoked. The vulnerability exists because the authorization policy does not verify current mailbox membership before permitting deletion operations. This affects FreeScout versions prior to 1.8.221. The issue wa [truncated]
FreeScout, a PHP Laravel-based help desk and shared inbox application, contains an authorization bypass vulnerability in versions prior to 1.8.221. The ThreadPolicy::edit method fails to verify current mailbox membership when evaluating edit permissions. A user who previously created content in Mailbox A and was subsequently removed from that mailbox can continue to modify thread bodies if they retain the [truncated]
FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.220, the email processing pipeline in FreeScout's FetchEmails command contains a vulnerability in how agent (user) replies are identified. The notification reply path uses a Message-ID format of `notify-{thread_id}-{user_id}-...` and extracts `thread_id` and `user_id` directly from this header without H [truncated]
CVE-2026-45294 is a user enumeration vulnerability in FreeScout, a PHP Laravel-based help desk and shared inbox application. The vulnerability exists in the password reset endpoint prior to version 1.8.219, where the application returns visually distinct responses depending on whether a submitted email address corresponds to an existing user account. This behavioral discrepancy allows unauthenticated remo [truncated]
