9.4 High
AI Score
Confidence
High
0.736 High
EPSS
Percentile
98.1%
SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.
packetstormsecurity.com/files/160995/osTicket-1.14.2-Server-Side-Request-Forgery.html
blackbatsec.medium.com/cve-2020-24881-server-side-request-forgery-in-osticket-eea175e147f0
github.com/osTicket/osTicket/commit/d98c2d096aeb8876c6ab2f88317cd371d781f14d