CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

OpenVAS•added 2021/07/02 12:0 a.m.•9 views

osTicket < 1.12.6 Multiple XSS Vulnerabilities

osTicket is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

6.1CVSS6.4AI score0.00686EPSS

Exploits0References2

Circl•added 2021/06/28 10:27 p.m.•1 views

CVE-2020-22609

creationtimestamp| type| source ---|---|--- 2021-06-28 22:27:55+00:00| seen| https://t.me/cibsecurity/25755...

6.1CVSS6.1AI score0.00686EPSS

Exploits0References1

OSV•added 2021/06/28 7:15 p.m.•8 views

CVE-2020-22609

Cross Site Scripting XSS vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php...

6.1CVSS5.9AI score

Exploits0References1

CVE•added 2021/06/28 6:38 p.m.•60 views

CVE-2020-22609

CVE-2020-22609 is an XSS vulnerability in osTicket prior to v1.12.6. Affected component: include/class.queue.php; attacker can inject scripts via the queue-name parameter. Root cause: improper input handling leads to reflected/stored XSS (per the sources confirming the queue-name vector). Impact ...

6.1CVSS6AI score0.00686EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by