Description Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4. Remediation References CVE-2022-4271 Related Vulnerabilities WordPress Plugin Fusion:Extension-Gallery Multiple Unspecified Vulnerabilities (1.0.4) WordPress Plugin Rating-Widget:Star Review System Multiple Cross-Site Scripting Vulnerabilities (1.3.1) SugarCRM Improperly Controlled Modification of Dynamically-Determined Object Attributes Vulnerability (CVE-2019-17315) WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5) WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.1) Severity Medium Classification CVE-2022-4271 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities