CVE-2019-11537

NONE EPSS 90.5%
Published Apr 25, 20197y ago · Modified Jun 17, 20262w ago
Find Similar
Published Apr 25, 2019 7y ago
Last Modified Jun 17, 2026 2w ago

Description

In osTicket before 1.12, XSS exists via /upload/file.php, /upload/scp/users.php?do=import-users, and /upload/scp/ajax.php/users/import if an agent manager user uploads a crafted .csv file to the User Importer, because file contents can appear in an error message. The XSS can lead to local file inclusion.

Threat Intelligence

EPSS Exploit Probability
90.5% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
osticketosticket* <1.12

References 5

  • github.com https://github.com/osTicket/osTicket/pull/4869
    Third Party Advisory
  • github.com https://github.com/osTicket/osTicket/releases/tag/v1.12
    Third Party Advisory
  • pentest.com.tr https://pentest.com.tr/exploits/osTicket-v1-11-XSS-to-LFI.html
    ExploitThird Party Advisory
  • exploit-db.com https://www.exploit-db.com/exploits/46753
    ExploitThird Party AdvisoryVDB Entry
  • exploit-db.com https://www.exploit-db.com/exploits/46753/
    ExploitThird Party AdvisoryVDB Entry

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.