7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.4%
A SQL injection vulnerability in the “Search” functionality of “tickets.php” page in osTicket 1.15.x allows authenticated attackers to execute arbitrary SQL commands via the “keywords” and “topic_id” URL parameters combination.
enhancesoft.com
osticket.com
members.backbox.org/osticket-sql-injection/