osTicket < v1.16.6 - Cross-Site Scripting

Cross-site Scripting XSS - Generic in GitHub repository osticket/osticket prior to v1.16.6. id: CVE-2023-1318 info: name: osTicket v1.16.6 - Cross-Site Scripting author: ritikchaddha severity: medium description: | Cross-site Scripting XSS - Generic in GitHub repository osticket/osticket prior to...

EUVD-2026-1318

The Wish To Go plugin for WordPress is vulnerable to Stored Cross-Site Scripting via shortcode attributes in all versions up to, and including, 0.5.2 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...

PT-2025-28057 · Undefined · Undefined

CVE-2025-1318 Rejected reason https://t.co/fQyac1UnvC...

CVE-2024-1318

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'feedzywizardstepprocess' and 'importstatus' functions in all versions up to, and...

CVE-2022-1318

Hills ComNav version 3002-19 suffers from a weak communication channel. Traffic across the local network for the configuration pages can be viewed by a malicious actor. The size of certain communications packets are predictable. This would allow an attacker to learn the state of the system if the...

CVE-2010-1318

Stack-based buffer overflow in the AgentX::receiveagentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via unspecified vectors...

Huawei EulerOS: Security Advisory for libtasn1 (EulerOS-SA-2025-1318)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-1318

creationtimestamp| type| source ---|---|--- 2025-03-02 11:46:28+00:00| seen| Telegram/unG3xAfaI5aqVfI74x5O5OG5AAdkUCR0gp7iZP-nefET-cW...

RHSA-2024:1318

creationtimestamp| type| source ---|---|--- 2024-03-18 13:16:28+00:00| seen| https://t.me/ctinow/210492...

CVE-2024-1318

creationtimestamp| type| source ---|---|--- 2024-03-03 10:16:43+00:00| seen| https://t.me/ctinow/198646 2025-04-22 17:03:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12901...

CAN-2004-1318

Summary of CVE-2004-1318 (Namazu): Namazu2’s namazu.cgi accepts input that is not properly sanitised, allowing a remote attacker to cause cross-site scripting (XSS). The Debian advisories (DSA-627-1) describe the flaw as unsanitised input in Namazu2, with exploitation via a crafted query, notably...

CVE-2024-1318

The CVE-2024-1318 issue affects the WordPress plugin RSS Aggregator by Feedzy (versions up to 4.4.2). Root cause: missing capability checks in feedzy_wizard_step_process and import_status functions, allowing an authenticated user with Contributor+ privileges to modify data and draft/publish posts...

CVE-2024-1318

The RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'feedzywizardstepprocess' and 'importstatus' functions in all versions up to, and...

WordPress RSS Aggregator by Feedzy Plugin <= 4.4.2 is vulnerable to Broken Access Control

Software RSS Aggregator by Feedzy Type Plugin Vulnerable versions = 4.4.2 Fixed in 4.4.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1318 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID f13906af0947 Credits Lucio Sá Required...

osTicket < 1.16.6, 1.17.x < 1.17.3 Multiple XSS Vulnerabilities

osTicket is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

CVE-2023-1318

creationtimestamp| type| source ---|---|--- 2023-03-10 18:34:53+00:00| seen| https://t.me/cibsecurity/59799...

CVE-2023-1318

Cross-site Scripting XSS - Generic in GitHub repository osticket/osticket prior to v1.16.6...

CVE-2023-1318 Cross-site Scripting (XSS) - Generic in osticket/osticket

Cross-site Scripting XSS - Generic in GitHub repository osticket/osticket prior to v1.16.6...

CVE-2023-1318

osTicket (osticket/osticket) versions prior to 1.16.6 are affected by Cross-site Scripting (XSS) in a generic manner. The vulnerability is described as an XSS flaw in osTicket before 1.16.6, enabling execution of arbitrary JavaScript in the victim’s browser. Affected component is the web applicat...

CVE-2022-1318

creationtimestamp| type| source ---|---|--- 2022-04-20 20:25:53+00:00| seen| https://t.me/cibsecurity/41185...