Description
Cross-site scripting (XSS) vulnerability in /ajax.php/form/help-topic in Enhancesoft osTicket before 1.10.2 allows remote attackers to inject arbitrary web script or HTML via the "message" parameter.
Remediation
References
Related Vulnerabilities
Joomla! Core Information Disclosure (1.5.0 - 3.7.5)
Oracle JRE CVE-2022-21549 Vulnerability (CVE-2022-21549)
Joomla Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-8419)
Oracle JRE CVE-2024-21068 Vulnerability (CVE-2024-21068)
Python Integer Overflow or Wraparound Vulnerability (CVE-2018-20406)