Cross-Site Scripting in osTicket Version Prior to 1.14.3
CVE-2020-24917

6.1MEDIUM

Key Information:

Vendor

Osticket

Status
Osticket
Vendor
CVE Published:
30 August 2020

What is CVE-2020-24917?

The osTicket application, prior to version 1.14.3, is susceptible to a Cross-Site Scripting (XSS) vulnerability. This issue arises when a crafted filename is uploaded, allowing attackers to execute malicious scripts through the DraftAjaxAPI::_uploadInlineImage() function in include/ajax.draft.php. By exploiting this security flaw, an attacker could potentially gain access to sensitive user data and compromise the integrity of the application.

References

https://github.com/osTicket/osTicket/commit/518de223933ea...
x_refsource_MISC
https://github.com/osTicket/osTicket/compare/v1.14.2...v1...
x_refsource_MISC
https://sisl.lab.uic.edu/projects/chess/osticket-xss/
x_refsource_MISC

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.