cbcvebase.

Enhancesoft Osticket vulnerabilities

23 known vulnerabilities affecting enhancesoft/osticket.

Total CVEs
23
CISA KEV
0
Public exploits
5
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM19

Vulnerabilities

Page 1 of 2
CVE-2026-22200P2HIGHCVSS 7.5PoC≥ 1.17, < 1.17.7≥ 1.18, < 1.18.3+2 more2026-01-12
CVE-2026-22200 [HIGH] CWE-74 CVE-2026-22200: Enhancesoft osTicket versions 1.18.x prior to 1.18.3 and 1.17.x prior to 1.17.7 contain an arbitrary Enhancesoft osTicket versions 1.18.x prior to 1.18.3 and 1.17.x prior to 1.17.7 contain an arbitrary file read vulnerability in the ticket PDF export functionality. A remote attacker can submit a ticket containing crafted rich-text HTML that includes PHP filter expressions which are insufficiently sanitized before being processed by the mPDF PDF genera
nvd
CVE-2021-45811P3MEDIUMCVSS 6.5PoC≥ 1.15, ≤ 1.15.82023-09-08
CVE-2021-45811 [MEDIUM] CWE-89 CVE-2021-45811: A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket 1.15.x A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket 1.15.x allows authenticated attackers to execute arbitrary SQL commands via the "keywords" and "topic_id" URL parameters combination.
nvd
CVE-2021-42235P3CRITICALCVSS 9.8fixed in 1.14.8≥ 1.15, < 1.15.42022-05-04
CVE-2021-42235 [CRITICAL] CWE-89 CVE-2021-42235: SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality.
nvd
CVE-2023-1315P4MEDIUMCVSS 5.4PoCfixed in 1.16.62023-03-10
CVE-2023-1315 [MEDIUM] CWE-79 CVE-2023-1315: Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6. Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6.
nvd
CVE-2023-1317P4MEDIUMCVSS 5.4PoCfixed in 1.16.62023-03-10
CVE-2023-1317 [MEDIUM] CWE-79 CVE-2023-1317: Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6. Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6.
nvd
CVE-2023-1318P4MEDIUMCVSS 5.4PoCfixed in 1.16.62023-03-10
CVE-2023-1318 [MEDIUM] CWE-79 CVE-2023-1318: Cross-site Scripting (XSS) - Generic in GitHub repository osticket/osticket prior to v1.16.6. Cross-site Scripting (XSS) - Generic in GitHub repository osticket/osticket prior to v1.16.6.
nvd
CVE-2022-31888P3HIGHCVSS 8.8≤ 1.16.22023-04-05
CVE-2022-31888 [HIGH] CWE-384 CVE-2022-31888: Session Fixation vulnerability in in function login in class.auth.php in osTicket through 1.16.2. Session Fixation vulnerability in in function login in class.auth.php in osTicket through 1.16.2.
nvd
CVE-2023-30082P3HIGHCVSS 7.5v1.17.22023-06-14
CVE-2023-30082 [HIGH] CWE-1284 CVE-2023-30082: A denial of service attack might be launched against the server if an unusually lengthy password (mo A denial of service attack might be launched against the server if an unusually lengthy password (more than 10000000 characters) is supplied using the osTicket application. This can cause the website to go down or stop responding. When a long password is entered, this procedure will consume all available CPU and memory.
nvd
CVE-2026-9507P3MEDIUMCVSS 5.1v1.18.22026-06-16
CVE-2026-9507 [MEDIUM] CWE-38 CVE-2026-9507: A session fixation vulnerability has been identified in osTicket v1.18.2. This security flaw allows A session fixation vulnerability has been identified in osTicket v1.18.2. This security flaw allows an attacker to hijack a victim’s account by keeping the initial session identifier (OSTSESSID) active after a successful login. The issue lies in the fact that the application does not invalidate the pre-authentication cookie or generate a new identifie
nvd
CVE-2026-26895P4MEDIUMCVSS 5.3fixed in 1.18.32026-04-02
CVE-2026-26895 [MEDIUM] CWE-203 CVE-2026-26895: User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumer User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames registered in the platform.
nvd
CVE-2019-13397P4MEDIUMCVSS 6.1v1.10.12019-07-09
CVE-2019-13397 [MEDIUM] CWE-79 CVE-2019-13397: Unauthenticated Stored XSS in osTicket 1.10.1 allows a remote attacker to gain admin privileges by i Unauthenticated Stored XSS in osTicket 1.10.1 allows a remote attacker to gain admin privileges by injecting arbitrary web script or HTML via arbitrary file extension while creating a support ticket.
nvd
CVE-2023-46967P4MEDIUMCVSS 6.1fixed in 1.18.02024-02-20
CVE-2023-46967 [MEDIUM] CWE-79 CVE-2023-46967: Cross Site Scripting vulnerability in the sanitize function in Enhancesoft osTicket 1.18.0 allows a Cross Site Scripting vulnerability in the sanitize function in Enhancesoft osTicket 1.18.0 allows a remote attacker to escalate privileges via a crafted support ticket.
nvd
CVE-2020-12629P4MEDIUMCVSS 5.4fixed in 1.14.22020-05-04
CVE-2020-12629 [MEDIUM] CWE-79 CVE-2020-12629: include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name. include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
nvd
CVE-2023-1320P4MEDIUMCVSS 6.1fixed in 1.16.62023-03-10
CVE-2023-1320 [MEDIUM] CWE-79 CVE-2023-1320: Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6. Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6.
nvd
CVE-2020-14012P4MEDIUMCVSS 5.4v1.14.22020-06-10
CVE-2020-14012 [MEDIUM] CWE-79 CVE-2020-14012: scp/categories.php in osTicket 1.14.2 allows XSS via a Knowledgebase Category Name or Category Descr scp/categories.php in osTicket 1.14.2 allows XSS via a Knowledgebase Category Name or Category Description. The attacker must be an Agent.
nvd
CVE-2020-22609P4MEDIUMCVSS 6.1fixed in 1.12.62021-06-28
CVE-2020-22609 [MEDIUM] CWE-79 CVE-2020-22609: Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name p Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php.
nvd
CVE-2020-22608P4MEDIUMCVSS 6.1fixed in 1.12.62021-06-28
CVE-2020-22608 [MEDIUM] CWE-79 CVE-2020-22608: Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name paramet Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter to include/ajax.search.php.
nvd
CVE-2022-4271P4MEDIUMCVSS 5.4fixed in 1.16.42022-12-02
CVE-2022-4271 [MEDIUM] CWE-79 CVE-2022-4271: Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4. Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4.
nvd
CVE-2023-1316P4MEDIUMCVSS 5.4fixed in 1.16.62023-03-10
CVE-2023-1316 [MEDIUM] CWE-79 CVE-2023-1316: Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6. Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6.
nvd
CVE-2014-4744P4MEDIUMCVSS 4.3v1.8.0v1.8.0.1+9 more2014-07-09
CVE-2014-4744 [MEDIUM] CWE-79 CVE-2014-4744: Multiple cross-site scripting (XSS) vulnerabilities in osTicket before 1.9.2 allow remote attackers Multiple cross-site scripting (XSS) vulnerabilities in osTicket before 1.9.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Phone Number field to open.php or (2) Phone number field, (3) passwd1 field, (4) passwd2 field, or (5) do parameter to account.php.
nvd
Enhancesoft Osticket vulnerabilities | cvebase