VYPR
Unrated severityNVD Advisory· Published Aug 26, 2020· Updated Aug 4, 2024

CVE-2020-16193

CVE-2020-16193

Description

osTicket before 1.14.3 allows XSS because include/staff/banrule.inc.php has an unvalidated echo $info['notes'] call.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.