Lucene search

K
prionPRIOn knowledge basePRION:CVE-2015-1176
HistoryJan 23, 2015 - 3:59 p.m.

Cross site scripting

2015-01-2315:59:00
PRIOn knowledge base
www.prio-n.com
2

6.1 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.7%

Cross-site scripting (XSS) vulnerability in upload/scp/tickets.php in osTicket before 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the status parameter in a search action.

CPENameOperatorVersion
osticketle1.9.4

6.1 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.7%