Lucene search
K

5 matches found

Prion
Prion
added 2017/10/16 1:29 a.m.15 views

Design/Logic Flaw

osTicket 1.10.1 allows arbitrary client-side JavaScript code execution on victims who click a crafted support/scp/tickets.php?status= link, aka XSS. Session ID and data theft may follow as well as the possibility of bypassing CSRF protections, injection of iframes to establish communication...

4.3CVSS6.7AI score0.01892EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2015/01/25 12:0 a.m.57 views

CVE-2015-1176-xss-osticket

CVE-2015-1176-xss-osticket Information ---------------- Advisory by Octogence. Name: Reflected XSS Vulnerability in osTicket Ticket system Affected Software : osTicket Affected Versions: 1.9.4 and possibly below Vendor Homepage : http://osticket.com/ Vulnerability Type : Cross-site Scripting...

4.3CVSS6.1AI score0.01892EPSS
Exploits2
Cvelist
Cvelist
added 2015/01/23 3:0 p.m.20 views

CVE-2015-1176

Cross-site scripting XSS vulnerability in upload/scp/tickets.php in osTicket before 1.9.5 allows remote attackers to inject arbitrary web script or HTML via the status parameter in a search action...

6AI score0.01892EPSS
Exploits2References5
CVE
CVE
added 2015/01/23 3:0 p.m.51 views

CVE-2015-1176

CVE-2015-1176 is a reflected XSS vulnerability in osTicket before 1.9.5. The flaw resides in upload/scp/tickets.php, where the status parameter used during a search action can be crafted to inject arbitrary web script or HTML, enabling remote attackers to execute code in a victim’s browser. Publi...

4.3CVSS5.9AI score0.01892EPSS
Exploits2References5Affected Software1
Packet Storm
Packet Storm
added 2015/01/22 12:0 a.m.53 views

osTicket 1.9.4 Cross Site Scripting

CVE-2015-1176-xss-osticket Information ---------------- Advisory by Octogence. Name: Reflected XSS Vulnerability in osTicket Ticket system Affected Software : osTicket Affected Versions: 1.9.4 and possibly below Vendor Homepage : http://osticket.com/ Vulnerability Type : Cross-site Scripting...

4.3CVSS6.3AI score0.01892EPSS
Exploits2
Rows per page
Query Builder