Lucene search
HistoryMar 10, 2023 - 4:15 p.m.
CVE-2023-1317
github
osticket
v1.16.6
cross-site scripting
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
25.6%
Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6.
Affected configurations
Node
enhancesoftosticketRange<1.16.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| enhancesoft | osticket | * | cpe:2.3:a:enhancesoft:osticket:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2023-1317
2023-03-10 16:15:10
prion
prion
Cross site scripting
2023-03-10 16:15:00
osv
osv
CVE-2023-1317
2023-03-10 16:15:10
cvelist
cvelist
CVE-2023-1317 Cross-site Scripting (XSS) - Reflected in osticket/osticket
2023-03-10 00:00:00
huntr
huntr
Reflected XSS in Organizations Search
2022-12-06 19:21:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
25.6%
Related for NVD:CVE-2023-1317