8 matches found
EUVD-2020-4930
Malware in sbrugna...
CVE-2020-12629
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...
osTicket < 1.12.6, 1.14.0 < 1.14.2 XSS Vulnerability
osTicket is prone to a cross-site scripting XSS vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...
CVE-2020-12629
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...
CVE-2020-12629
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...
Code injection
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...
CVE-2020-12629
The CVE concerns osTicket before 1.14.2, where include/class.sla.php is vulnerable to cross-site scripting via the SLA Name. Root cause is insufficient validation of client data in the SLA handling code. Impact described is client-side script execution via the SLA name field; exploitation details...
CVE-2020-12629
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name...