CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2020/05/04 1:15 p.m.•18 views

CVE-2020-12629

include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...

5.4CVSS5.8AI score

Exploits0References3

NVD•added 2020/05/04 1:15 p.m.•9 views

CVE-2020-12629

include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...

5.4CVSS5.3AI score0.00274EPSS

Exploits1References3

Prion•added 2020/05/04 1:15 p.m.•12 views

Code injection

include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...

3.5CVSS5.2AI score0.00274EPSS

Exploits1References3Affected Software1

Cvelist•added 2020/05/04 12:28 p.m.•19 views

CVE-2020-12629

include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...

5.2AI score0.00274EPSS

Exploits1References3

CVE•added 2020/05/04 12:28 p.m.•48 views

CVE-2020-12629

The CVE concerns osTicket before 1.14.2, where include/class.sla.php is vulnerable to cross-site scripting via the SLA Name. Root cause is insufficient validation of client data in the SLA handling code. Impact described is client-side script execution via the SLA name field; exploitation details...

5.4CVSS5.2AI score0.00274EPSS

Exploits1References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by