CVE-2019-14749

NONE EPSS 94.9%
Published Aug 7, 20196y ago · Modified Jun 17, 20262w ago
Find Similar
Published Aug 7, 2019 6y ago
Last Modified Jun 17, 2026 2w ago

Description

An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. CSV (aka Formula) injection exists in the export spreadsheets functionality. These spreadsheets are generated dynamically from unvalidated or unfiltered user input in the Name and Internal Notes fields in the Users tab, and the Issue Summary field in the tickets tab. This allows other agents to download data in a .csv file format or .xls file format. This is used as input for spreadsheet applications such as Excel and OpenOffice Calc, resulting in a situation where cells in the spreadsheets can contain input from an untrusted source. As a result, the end user who is accessing the exported spreadsheet can be affected.

Threat Intelligence

EPSS Exploit Probability
94.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-1236

Affected Products 2

VendorProductVersionRange
osticketosticket* <1.10.7
osticketosticket*≥1.12  –  <1.12.1

References 5

  • packetstormsecurity.com http://packetstormsecurity.com/files/154004/osTicket-1.12-Formula-Injection.html
    Third Party AdvisoryVDB Entry
  • github.com https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249
    PatchThird Party Advisory
  • github.com https://github.com/osTicket/osTicket/releases/tag/v1.10.7
    Release NotesThird Party Advisory
  • github.com https://github.com/osTicket/osTicket/releases/tag/v1.12.1
    Release NotesThird Party Advisory
  • exploit-db.com https://www.exploit-db.com/exploits/47225
    Third Party AdvisoryVDB Entry

Remediation

  • github.com https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249
    PatchThird Party Advisory