Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
osTicket Observable Discrepancy Vulnerability - CVE-2026-26895 - Vulnerability Database
osTicket

osTicket Observable Discrepancy Vulnerability - CVE-2026-26895

Medium
Reference: CVE-2026-26895
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-26895
Title: osTicket Observable Discrepancy Vulnerability
Overview:

User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames registered in the platform.