汇总 osticket 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
已披露问题常与 跨站脚本与SQL 注入 相关,可能在 生产负载与软件部署 场景中带来 会话劫持与数据泄露 等暴露风险。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2025-45387 | osTicket prior to v1.17.6 and v1.18.2 are vulnerable to Broken Access Control Vulnerability in /scp/ajax.php. | [email protected] | 5.4 | 0.20% | 2025-06-02 | 2026-06-17 |
| CVE-2017-15580 | osTicket 1.10.1 provides a functionality to upload 'html' files with associated formats. However, it does not properly validate the uploaded file's contents and thus accepts any type of file, such as with a tickets.php request that is modified with a .html extension changed to a .exe extension. An attacker can leverage this vulnerability to upload arbitrary files on the web application having malicious content. | [email protected] | 9.8 | 15.98% | 2017-10-23 | 2026-06-16 |
| CVE-2017-15362 | osTicket 1.10.1 allows arbitrary client-side JavaScript code execution on victims who click a crafted support/scp/tickets.php?status= link, aka XSS. Session ID and data theft may follow as well as the possibility of bypassing CSRF protections, injection of iframes to establish communication channels, etc. The vulnerability is present after login into the application. This affects a different tickets.php file than CVE-2015-1176. | [email protected] | 6.1 | 1.21% | 2017-10-15 | 2026-06-16 |
| CVE-2017-14396 | In osTicket before 1.10.1, SQL injection is possible by constructing an array via use of square brackets at the end of a parameter name, as demonstrated by the key parameter to file.php. | [email protected] | 9.8 | 2.92% | 2017-09-12 | 2026-06-16 |
| CVE-2010-0606 | Cross-site scripting (XSS) vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users to inject arbitrary web script or HTML via the f parameter, possibly related to an error message generated by scp/admin.php. | [email protected] | 3.5 | 0.87% | 2010-02-11 | 2026-07-10 |
| CVE-2010-0605 | SQL injection vulnerability in scp/ajax.php in osTicket before 1.6.0 Stable allows remote authenticated users, with "Staff" permissions, to execute arbitrary SQL commands via the input parameter. | [email protected] | 7.5 | 3.05% | 2010-02-11 | 2026-07-10 |
| CVE-2006-6733 | Cross-site scripting (XSS) vulnerability in support/view.php in Support Cards 1 (osTicket) allows remote attackers to inject arbitrary web script or HTML via the e parameter. | [email protected] | 4.3 | 1.45% | 2006-12-26 | 2026-06-16 |
| CVE-2005-2154 | PHP local file inclusion vulnerability in (1) view.php and (2) open.php in osTicket 1.3.1 beta and earlier allows remote attackers to include and possibly execute arbitrary local files via the inc parameter. | [email protected] | 7.5 | 2.44% | 2005-07-06 | 2026-06-16 |
| CVE-2005-2153 | SQL injection vulnerability in class.ticket.php in osTicket 1.3.1 beta and earlier allows remote attackers to execute arbitrary SQL commands via the ticket variable. | [email protected] | 7.5 | 1.33% | 2005-07-06 | 2026-06-16 |
| CVE-2005-1438 | PHP remote file inclusion vulnerability in main.php in osTicket allows remote attackers to execute arbitrary PHP code via the include_dir parameter. | [email protected] | 7.5 | 1.49% | 2005-05-03 | 2026-06-16 |
| CVE-2005-1437 | Multiple SQL injection vulnerabilities in osTicket allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to admin.php or (2) cat parameter to view.php. | [email protected] | 7.5 | 1.32% | 2005-05-03 | 2026-06-16 |
| CVE-2004-0614 | osTicket trusts a hidden form field in the submit form to limit the upload size of a document, which could allow remote attackers to upload a file of any size. | [email protected] | 6.4 | 1.19% | 2004-12-06 | 2026-06-16 |
| CVE-2004-0613 | osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory. | [email protected] | 7.5 | 9.87% | 2004-12-06 | 2026-06-16 |