Known Vulnerabilities for Osticket by Enhancesoft
Listed below are 10 of the newest known vulnerabilities associated with "Osticket" by "Enhancesoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-26895 json | User enumeration vulnerability in /pwreset.php in osTicket v1.18.2 allows remote attackers to enumerate valid usernames regis... | Not Provided | 2026-04-02 | 2026-04-02 |
| CVE-2026-8194 json | A security vulnerability has been detected in osTicket up to 1.18.3. Impacted is an unknown function of the file include/clas... | Not Provided | 2026-05-09 | 2026-05-09 |
| CVE-2025-28877 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in m.tiggelaar Key4ce osTi... | Not Provided | 2025-03-26 | 2026-04-23 |
| CVE-2023-30082 json | A denial of service attack might be launched against the server if an unusually lengthy password (more than 10000000 characte... | 7.5 - HIGH | 2023-06-14 | 2023-06-28 |
| CVE-2023-27149 json | A stored cross-site scripting (XSS) vulnerability in Enhancesoft osTicket v1.17.2 allows attackers to execute arbitrary web s... | 4.8 - MEDIUM | 2023-10-23 | 2023-10-27 |
| CVE-2023-27148 json | A stored cross-site scripting (XSS) vulnerability in the Admin panel in Enhancesoft osTicket v1.17.2 allows attackers to exec... | 4.8 - MEDIUM | 2023-10-23 | 2023-10-27 |
| CVE-2023-1320 json | Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6. | 6.1 - MEDIUM | 2023-03-10 | 2023-03-13 |
| CVE-2023-1319 json | Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6. | 4.8 - MEDIUM | 2023-03-10 | 2023-03-13 |
| CVE-2023-1318 json | Cross-site Scripting (XSS) - Generic in GitHub repository osticket/osticket prior to v1.16.6. | 5.4 - MEDIUM | 2023-03-10 | 2023-03-13 |
| CVE-2023-1317 json | Cross-site Scripting (XSS) - Reflected in GitHub repository osticket/osticket prior to v1.16.6. | 5.4 - MEDIUM | 2023-03-10 | 2023-03-13 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Enhancesoft | Osticket | 1.9.9 | |||
| Application | Enhancesoft | Osticket | 1.9.8.1 | |||
| Application | Enhancesoft | Osticket | 1.9.8 | |||
| Application | Enhancesoft | Osticket | 1.9.7 | |||
| Application | Enhancesoft | Osticket | 1.9.6 | |||
| Application | Enhancesoft | Osticket | 1.9.5.1 | |||
| Application | Enhancesoft | Osticket | 1.9.5 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.4 | |||
| Application | Enhancesoft | Osticket | 1.9.3 | |||
| Application | Enhancesoft | Osticket | 1.9.2 | |||
| Application | Enhancesoft | Osticket | 1.9.16 | |||
| Application | Enhancesoft | Osticket | 1.9.15 | |||
| Application | Enhancesoft | Osticket | 1.9.14 | |||
| Application | Enhancesoft | Osticket | 1.9.13 |