osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2020-22609 - Vulnerability Database
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2020-22609
Medium
Reference:
CVE-2020-22609
Title:
osTicket Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:
Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket before v1.12.6 via the queue-name parameter in include/class.queue.php.