exploitDog

CVE-2022-4271

Опубликовано: 02 дек. 2022

Источник: nvd

CVSS3: 8

CVSS3: 5.4

EPSS Низкий

Описание

Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4.

Ссылки

https://github.com/osticket/osticket/commit/5213ff138c6be6144a6692376ac0803a42eca168
Patch
Third Party Advisory
https://huntr.dev/bounties/a11c922f-255a-412a-aa87-7f3bd7121599
Exploit
Patch
Third Party Advisory
https://github.com/osticket/osticket/commit/5213ff138c6be6144a6692376ac0803a42eca168
Patch
Third Party Advisory
https://huntr.dev/bounties/a11c922f-255a-412a-aa87-7f3bd7121599
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:enhancesoft:osticket:*:*:*:*:*:*:*:*

Версия до 1.16.4 (исключая)

EPSS

Процентиль: 46%

0.00235

Низкий

8 High

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-jjf8-m95g-r8qf

CVSS3: 5.4

github

около 3 лет назад

Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to 1.16.4.

EPSS

Процентиль: 46%

0.00235

Низкий

8 High

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79