Enhancesoft: >> Osticket >> 1.12.6 Security Vulnerabilities
SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-05-04
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
CVSS Score
5.4
EPSS Score
0.003
Published
2020-05-04
Page 2