Description

Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6.

Remediation

References

CVE-2023-1320

Related Vulnerabilities

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4297)

WordPress Plugin WP RSS By Publishers Multiple SQL Injection Vulnerabilities (0.1)

WordPress Plugin Spellchecker 'general.php' Local and Remote File Include Vulnerabilities (3.1)

WordPress Plugin EWWW Image Optimizer Denial of Service (6.0.1)

WebLogic CVE-2017-3506 Vulnerability (CVE-2017-3506)

Severity

Medium

Classification

CVE-2023-1320 CWE-707 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities