Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Exploit DB
Exploit DBadded 2018/08/08 12:0 a.m.96 views

osTicket 1.10.1 - Arbitrary File Upload

Exploit Title: osTicket 1.10.1 - Arbitrary File Upload Exploit Author: r3j10r Rajwinder Singh Date: 2018-08-08 Vendor Homepage: http://osticket.com/ Software Link: http://osticket.com/download Version: osTicket v1.10.1 CVE-2017-15580 Vulnerability Details: osTicket application provides a...

9.8CVSS9.6AI score0.15977EPSS
Exploits5
0day.today
0day.todayadded 2017/10/25 12:0 a.m.1605 views

osTicket 1.10.1 Shell Upload Vulnerability

Exploit for php platform in category web applications Reference: https://becomepentester.blogspot.ae/2017/10/osTicket-File-Upload- Restrictions-Bypassed-CVE-2017-15580.html Exploit Title: File Upload Restrictions Bypassed Date: 18 October, 2017 Exploit Author: Rajwinder Singh Vendor Homepage:...

7.5CVSS9.2AI score0.15977EPSS
Exploits5
CVE
CVEadded 2017/10/23 8:0 a.m.77 views

CVE-2017-15580

osTicket 1.10.1 is vulnerable to an arbitrary file upload due to improper validation of uploaded file contents. The vulnerability allows an attacker to upload arbitrary files (e.g., PHP shells) by abusing the HTML upload mechanism, bypassing client-side checks, and changing file extensions to dis...

9.8CVSS9.4AI score0.15977EPSS
Exploits5References7Affected Software1
Rows per page
Query Builder