Lucene search
EnhancesoftOsticket
6 matches found
CVE-2023-1317
Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6.
5.4CVSS5.3AI score0.03622EPSS
CVE-2023-1315
Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6.
5.4CVSS5.3AI score0.31019EPSS
CVE-2020-14012
scp/categories.php in osTicket 1.14.2 allows XSS via a Knowledgebase Category Name or Category Description. The attacker must be an Agent.
5.4CVSS5.1AI score0.00191EPSS
CVE-2023-1316
Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6.
5.4CVSS4.9AI score0.00076EPSS
CVE-2023-1318
Cross-site Scripting (XSS) - Generic in GitHub repository osticket/osticket prior to v1.16.6.
5.4CVSS5.3AI score0.07783EPSS
CVE-2020-12629
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
5.4CVSS5.2AI score0.00221EPSS