Vulnerabilities > Enhancesoft > Osticket > 1.8.0.3

DATE CVE VULNERABILITY TITLE RISK
2021-06-28 CVE-2020-22609 Cross-site Scripting vulnerability in Enhancesoft Osticket
Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php.
network
low complexity
enhancesoft CWE-79
6.1
2020-05-04 CVE-2020-12629 Cross-site Scripting vulnerability in Enhancesoft Osticket
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
network
low complexity
enhancesoft CWE-79
5.4