45 matches found
CVE-2023-46967
CVE-2023-46967 involves a Cross Site Scripting vulnerability in the sanitize function of Enhancesoft osTicket 1.18.0 . The underlying issue allows a remote attacker to escalate privileges via a crafted support ticket. Core details from the connected documents confirm the affected software and the...
CVE-2020-24881
osTicket before version 1.14.3 contains CVE-2020-24881: a Server-Side Request Forgery (SSRF) flaw in the PDF/print path that lets an attacker cause the server to fetch internal resources or place malicious files on the server, enabling internal port scanning and information disclosure. The Nuclei...
CVE-2023-27148
CVE-2023-27148 describes a stored cross-site scripting (XSS) vulnerability in Enhancesoft osTicket Admin panel (v1.17.2). The flaw allows an attacker to inject arbitrary web scripts or HTML via the Role Name parameter, enabling potential script execution in the context of authenticated users with...
CVE-2019-14750
osTicket prior to 1.12.1 and older than 1.10.7/1.12.x are affected by a stored XSS in setup/install.php due to lack of input sanitization in the firstname/lastname fields, which could enable injection and potentially cookie theft or related actions. The confirmed remediation is to upgrade to osTi...
CVE-2021-42235
osTicket is vulnerable to SQL injection in the login and password reset flow (CVE-2021-42235). Affected: osTicket before 1.14.8 and before 1.15.4. Impact: attacker could access the administration profile functionality. Remedy: upgrade to osTicket 1.14.8 or 1.15.4 or later.
CVE-2019-14749
Summary: CVE-2019-14749 affects osTicket before 1.10.7 and 1.12.x before 1.12.1, where the export spreadsheets feature can inject formulas (CSV/XLS) via unvalidated input in Name/Internal Notes (Users tab) and Issue Summary (Tickets tab). This can cause a Formula Injection in downloaded spreadshe...
CVE-2019-13397
The CVE-2019-13397 issue affects osTicket 1.10.1 and is an Unauthenticated Stored XSS vulnerability that lets an attacker gain admin privileges by injecting script/HTML via an arbitrary file extension during ticket creation. The vulnerability is documented across multiple sources (NVD/Red Hat/OSV...
CVE-2019-14748
CVE-2019-14748 affects osTicket versions prior to 1.10.7 and 1.12.x prior to 1.12.1. The ticket creation form allows file uploads without sufficient content validation and improper output handling, causing persistent XSS (e.g., uploading a .html file) that can lead to cookie theft or malicious ac...
CVE-2025-26241
The CVE-2025-26241 entry describes a SQL injection in osTicket’s Search function (tickets.php) for versions
CVE-2023-1318
osTicket (osticket/osticket) versions prior to 1.16.6 are affected by Cross-site Scripting (XSS) in a generic manner. The vulnerability is described as an XSS flaw in osTicket before 1.16.6, enabling execution of arbitrary JavaScript in the victim’s browser. Affected component is the web applicat...
CVE-2021-45811
CVE-2021-45811 is a confirmed SQL injection vulnerability in osTicket 1.15.x, affecting the Search functionality on tickets.php where authenticated users can manipulate the query via the combination of the keywords and topic_id URL parameters. The issue allows attackers to execute arbitrary SQL c...
CVE-2018-7192
osTicket
CVE-2022-4271
osTicket (osticket/osticket)
CVE-2023-1315
CVE-2023-1315: Reflected Cross-Site Scripting in osTicket prior to v1.16.6 (osticket/osticket). An attacker could cause arbitrary JavaScript to run in a victim’s browser. Affected component is the web interface; root cause is reflected XSS. Remediation: upgrade osTicket to a version >= 1.16.6....
CVE-2023-1317
CVE-2023-1317 describes a reflected XSS in osTicket (osticket/osticket) prior to version 1.16.6. The visible impact is that an attacker could cause arbitrary JavaScript to run in a victim’s browser, potentially leading to data theft or unauthorized actions within the user session. The CVE is docu...
CVE-2018-7196
Summary: CVE-2018-7196 is a cross-site scripting (XSS) vulnerability in osTicket before 1.10.2, exploitable via the sort parameter in /scp/index.php. Affected product/version: osTicket prior to 1.10.2. Root cause / vector: Malicious input to the sort parameter allows injection of arbitrary JavaSc...
CVE-2018-7193
Summary : CVE-2018-7193 is an XSS vulnerability in osTicket before 1.10.2. The flaw exists in /scp/directory.php, where the order parameter can be exploited to inject arbitrary script/HTML. Affected software : osTicket
CVE-2022-32074
CVE-2022-32074 affects the osTicket-plugins Storage-FS component (audit/class.audit.php). It is a stored XSS vulnerability where a crafted SVG file can cause arbitrary web scripts/HTML execution. The issue is linked to a commit in the repository (a7842d494889fd5533d13deb3c6a7789768795ae) as part ...
CVE-2019-11537
CVE-2019-11537 affects osTicket prior to 1.12. An XSS flaw exists in file upload paths (/upload/file.php, /upload/scp/users.php?do=import-users, /upload/scp/ajax.php/users/import) when an agent manager uploads a crafted CSV to the User Importer, caused by error-message content echoing file conten...
CVE-2023-1319
CVE-2023-1319 concerns a stored Cross-site Scripting (XSS) vulnerability in the osTicket project (osticket/osticket) prior to version 1.16.6. The consolidated sources confirm an XSS flaw that persists when user-supplied input is stored and later reflected in responses, with public references tyin...
CVE-2020-22609
CVE-2020-22609 is an XSS vulnerability in osTicket prior to v1.12.6. Affected component: include/class.queue.php; attacker can inject scripts via the queue-name parameter. Root cause: improper input handling leads to reflected/stored XSS (per the sources confirming the queue-name vector). Impact ...
CVE-2022-31888
Summary: CVE-2022-31888 is a session fixation vulnerability in osTicket, affecting versions up to 1.16.2. The issue is located in the login function of class.auth.php, enabling potential session hijacking. The CVSSv3.1 vector indicates Network attack, no privileges required, user interaction requ...
CVE-2006-5407
CVE-2006-5407 : The NVD/CVE records indicate a PHP remote file inclusion vulnerability in open_form.php used by osTicket, exploitable via a URL in the include_dir parameter to execute arbitrary PHP code. The vulnerability affects the affected software component/function as described in the source...
CVE-2023-1316
CVE-2023-1316 is a stored XSS vulnerability in osticket/osticket prior to v1.16.6. Multiple connected sources corroborate that the issue affects osticket/osticket by storing malicious scripts (notably via an email field) and potentially allows data disclosure or scripting in affected sessions. Th...
CVE-2023-27149
CVE-2023-27149 describes a stored XSS in Enhancesoft osTicket v1.17.2, exploitable via crafted payload in the Label input during a custom list update. Affected component: Label field handling in osTicket’s custom lists. Impact per sources: execution of arbitrary web scripts/HTML. Root cause: inpu...
CVE-2023-30082
CVE-2023-30082 affects the osTicket application. The available documents describe a denial-of-service vulnerability where supplying an unusually lengthy password (more than 10,000,000 characters) can cause the server to become unavailable or unresponsive by consuming high CPU and memory. The impa...
CVE-2026-22200
The CVE-2026-22200 issue affects Enhancesoft osTicket 1.18.x before 1.18.3 and 1.17.x before 1.17.7, where the ticket PDF export path allows an arbitrary file read. A vulnerability arises when a ticket submission includes crafted rich-text HTML with PHP filter expressions, which are not adequatel...
CVE-2020-14012
osTicket 1.14.2 is vulnerable to an XSS in the scp/categories.php file via Knowledgebase Category Name or Category Description. The attacker must be an authenticated Agent. The issue is documented across multiple sources (CVE-2020-14012 and related records) and is not tied to a specific exploit s...
CVE-2020-22608
CVE-2020-22608 affects osTicket (Enhancesoft) prior to v1.12.6. A cross-site scripting vulnerability exists via the queue-name parameter in include/ajax.search.php. Impact is consistent with XSS as described in multiple sources; CVSS v3.1 base score 6.1 (NETWORK, LOW ATTACK COMPLEXITY, USER INTER...
CVE-2020-12629
The CVE concerns osTicket before 1.14.2, where include/class.sla.php is vulnerable to cross-site scripting via the SLA Name. Root cause is insufficient validation of client data in the SLA handling code. Impact described is client-side script execution via the SLA name field; exploitation details...
CVE-2010-0606
Summary: The CVE-2010-0606 issue affects osTicket before 1.6.0 Stable. The vulnerability is a reflected XSS in the parameter f of scp/ajax.php , potentially related to an error message from scp/admin.php . It requires remote authentication and could allow injection of arbitrary web script or HTML...
CVE-2014-4744
osTicket
CVE-2015-1176
CVE-2015-1176 is a reflected XSS vulnerability in osTicket before 1.9.5. The flaw resides in upload/scp/tickets.php, where the status parameter used during a search action can be crafted to inject arbitrary web script or HTML, enabling remote attackers to execute code in a victim’s browser. Publi...
CVE-2005-1439
CVE-2005-1439 : In osTicket, a directory traversal vulnerability exists in attachments.php that allows remote attackers to read arbitrary files via .. sequences in the file parameter. Evidence from multiple sources confirms a network-wide, unauthenticated remote attack vector with a base CVSS v2 ...
CVE-2010-4634
osTicket 1.6 is affected by a directory traversal vulnerability. The issue allows remote attackers to read arbitrary files by supplying .. sequences in the file parameter to module.php, a vulnerability described across CVE-2010-4634. The description notes this is a separate vector from CVE-2005-1...
CVE-2023-1320
The CVE-2023-1320 entry concerns a stored XSS vulnerability in osticket/osticket prior to v1.16.6. The vulnerability affects the web application’s handling of user-supplied input, enabling an attacker to inject script that can be executed in an authenticated user’s browser, potentially accessing ...
CVE-2015-1347
CVE-2015-1347 affects the osTicket project: a cross-site scripting (XSS) vulnerability in the file client.inc.php in versions before 1.9.5.1, exploitable via the lang parameter. The available connected documents confirm the issue and reference the fix in v1.9.5.1. Impact is remote script/HTML inj...
CVE-2010-0605
Technical details for CVE-2010-0605 are not publicly available in the provided connected documents. The initial description covers the basic vulnerability info only. Monitor for updates from official advisories for affected versions and fixes.
CVE-2020-16193
Summary of CVE-2020-16193 : osTicket
CVE-2020-24917
CVE-2020-24917 affects osTicket
CVE-2005-1436
CVE-2005-1436 corresponds to osTicket XSS vulnerabilities across multiple input vectors. Connected sources indicate broader issues in osTicket versions <= 1.2.7 and
CVE-2018-7194
CVE-2018-7194 affects Enhancesoft osTicket up to version 1.10.1. The vulnerability is an integer format issue in the ticket number generator that allows a remote attacker to trigger a denial of service by sending a ticket creation request with a very large number of digits in the ticket number fo...
CVE-2009-2361
CVE-2009-2361 describes a SQL injection in osTicket’s include/class.staff.php. The vulnerability permits remote attackers to inject arbitrary SQL via the staff username parameter, affecting versions prior to 1.6 RC5. The issue exposes the possibility of unauthorized data access or modification du...
CVE-2018-7195
CVE-2018-7195 concerns Enhancesoft osTicket before 1.10.2. The issue allows a remote attacker to reset arbitrary passwords (when an associated e‑mail address is known) by exploiting guest access and guessing a 6‑digit number. Public sources in the connected documents consistently describe this as...
CVE-2026-26895
The issue is a user enumeration vulnerability in osTicket v1.18.2, exposed via /pwreset.php, allowing remote attackers to enumerate valid usernames registered on the platform. The description consistently refers to a username enumeration flaw without detailing the root cause beyond the vulnerable...