Lucene search

K
osvGoogleOSV:CVE-2021-45811
HistorySep 08, 2023 - 2:15 a.m.

CVE-2021-45811

2023-09-0802:15:07
Google
osv.dev
5
cve-2021-45811
sql injection
osticket
search functionality

8.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.5%

A SQL injection vulnerability in the “Search” functionality of “tickets.php” page in osTicket 1.15.x allows authenticated attackers to execute arbitrary SQL commands via the “keywords” and “topic_id” URL parameters combination.

8.6 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.5%

Related for OSV:CVE-2021-45811