Enhancesoft osTicket prior to 1.10.2 allows remote malicious users to reset arbitrary passwords (when an associated e-mail address is known) by leveraging guest access and guessing a 6-digit number.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
osticket osticket |
Vulmon