Description Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4. Remediation References CVE-2022-4271 Related Vulnerabilities IBM WebSEAL Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2018-1803) PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-6420) MySQL CVE-2012-0574 Vulnerability (CVE-2012-0574) Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5335) PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-2329) Severity Medium Classification CVE-2022-4271 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N Tags Missing Update Known Vulnerabilities