Vulnerabilities > Enhancesoft > Osticket > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-10 | CVE-2020-14012 | Cross-site Scripting vulnerability in Enhancesoft Osticket 1.14.2 scp/categories.php in osTicket 1.14.2 allows XSS via a Knowledgebase Category Name or Category Description. | 3.5 |
| 2020-05-04 | CVE-2020-12629 | Cross-site Scripting vulnerability in Enhancesoft Osticket include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name. | 3.5 |