Lucene search
PRIOn knowledge basePRION:CVE-2014-4744HistoryJul 09, 2014 - 2:55 p.m.
Cross site scripting
2014-07-0914:55:00
PRIOn knowledge base
www.prio-n.com
1
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
58.6%
Multiple cross-site scripting (XSS) vulnerabilities in osTicket before 1.9.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Phone Number field to open.php or (2) Phone number field, (3) passwd1 field, (4) passwd2 field, or (5) do parameter to account.php.
Related
openvas
openvas
osTicket < 1.9.2 Multiple XSS Vulnerabilities - Active Check
2014-08-26 00:00:00
nvd
nvd
CVE-2014-4744
2014-07-09 14:55:04
cve
cve
CVE-2014-4744
2014-07-09 14:55:04
cvelist
cvelist
CVE-2014-4744
2014-07-09 14:00:00
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
58.6%
Related for PRION:CVE-2014-4744