CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Enhancesoft: >> Osticket >> 1.15.2 Security Vulnerabilities

CVE-2022-4271

Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4.

CVSS Score

8.0

EPSS Score

0.004

Published

2022-12-02

CVE-2021-42235

SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality.

CVSS Score

9.8

EPSS Score

0.003

Published

2022-05-04

Page 2

Vulnerabilities

Vulnerable Software

Enhancesoft: >> Osticket >> 1.15.2 Security Vulnerabilities

Products

Pricing

Contact Us