Vulnerabilities > Enhancesoft > Osticket > 1.8.0.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-28 | CVE-2020-22609 | Cross-site Scripting vulnerability in Enhancesoft Osticket Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php. | 6.1 |
| 2020-05-04 | CVE-2020-12629 | Cross-site Scripting vulnerability in Enhancesoft Osticket include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name. | 5.4 |