Lucene search
EnhancesoftOsticket*
2 matches found
CVE-2021-42235
SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality.
9.8CVSS9.9AI score0.0025EPSS
CVE-2022-4271
Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4.
8CVSS5.6AI score0.00176EPSS