Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:32 a.m.7 views

CVE-2019-14749

An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. CSV aka Formula injection exists in the export spreadsheets functionality. These spreadsheets are generated dynamically from unvalidated or unfiltered user input in the Name and Internal Notes fields in the Users tab, and...

8.8CVSS7AI score0.09612EPSS
Exploits4References1
Exploit DB
Exploit DB
added 2019/08/12 12:0 a.m.178 views

osTicket 1.12 - Formula Injection

Exploit Title: osTicket-v1.12 Formula Injection Vendor Homepage: https://osticket.com/ Software Link: https://osticket.com/download/ Exploit Author: Aishwarya Iyer Contact: https://twitter.com/aish9524 Website: https://about.me/aishiyer Category: webapps CVE: CVE-2019-14749 1. Description An issu...

8.8CVSS9AI score0.09612EPSS
Exploits4
Circl
Circl
added 2019/08/12 12:0 a.m.15 views

CVE-2019-14749

creationtimestamp| type| source ---|---|--- 2019-08-12 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/47225...

8.8CVSS6.8AI score0.09612EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2019/08/09 12:0 a.m.81 views

osTicket < 1.10.7, 1.12.x < 1.12.1 Multiple Vulnerabilities

osTicket is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.2AI score0.11687EPSS
Exploits13References2
CVE
CVE
added 2019/08/07 4:38 p.m.91 views

CVE-2019-14749

Summary: CVE-2019-14749 affects osTicket before 1.10.7 and 1.12.x before 1.12.1, where the export spreadsheets feature can inject formulas (CSV/XLS) via unvalidated input in Name/Internal Notes (Users tab) and Issue Summary (Tickets tab). This can cause a Formula Injection in downloaded spreadshe...

8.8CVSS8.6AI score0.09612EPSS
Exploits4References5Affected Software1
Rows per page
Query Builder