Browse all 7 CVE security advisories affecting osticket. AI-powered Chinese analysis, POCs, and references for each vulnerability.
osticket is an open-source help desk ticketing system primarily used for managing customer support communications and workflows. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues, often stemming from improper input validation and access control weaknesses. The platform's security posture has been impacted by several critical vulnerabilities, including those allowing unauthorized administrative access and data exposure. While no major public security incidents have been widely documented, the presence of seven CVEs indicates ongoing security challenges that require diligent patch management and secure configuration practices to mitigate potential risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-1315 | Cross-site Scripting (XSS) - Reflected in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2023-1316 | Cross-site Scripting (XSS) - Stored in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2023-1317 | Cross-site Scripting (XSS) - Reflected in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2023-1318 | Cross-site Scripting (XSS) - Generic in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2023-1319 | Cross-site Scripting (XSS) - Stored in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2023-1320 | Cross-site Scripting (XSS) - Stored in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2023-03-10 |
| CVE-2022-4271 | Cross-site Scripting (XSS) - Reflected in osticket/osticket — osticket/osticketCWE-79 | 5.4 | - | 2022-12-02 |
This page lists every published CVE security advisory associated with osticket. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.