File Upload Vulnerability in osTicket by OS Ticket
CVE-2004-0614

Currently unrated

Key Information:

Vendor: Osticket
Status: Osticket Sts
Vendor: CVE Published:; 6 December 2004

What is CVE-2004-0614?

The osTicket platform suffers from a file upload vulnerability due to its reliance on a hidden form field to control document upload sizes. This flaw allows remote attackers to bypass restrictions, potentially enabling them to upload files of any size. Exploiting this vulnerability can result in the execution of malicious scripts or storage of harmful files, posing serious security threats to the affected systems.

References

http://marc.info/?l=bugtraq&m=108786779500957&w=2

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/16477

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 6, 2004
Vulnerability Reserved
Jun 29, 2004

CVE-2004-0614 Data

JSON

Osticket

What is CVE-2004-0614?

References

Timeline