Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/04/2023 Updated: 12/04/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

SQL Injection vulnerability in audit/class.audit.php in osTicket osTicket-plugins before commit a7842d494889fd5533d13deb3c6a7789768795ae via the order parameter to the getOrder function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
enhancesoft audit log

CVE-2022-31890 for osTicket | Support Ticketing System Nickname: > python nicknamepy # The output of the first nickname in the table Password: > python passwordpy # The output of the first password in the table Output to file: > python dumpFilepy > cat dumptxt || {{

CWE-89 https://checkmarx.com/blog/securing-open-source-solutions-a-study-of-osticket-vulnerabilities/https://github.com/osTicket/osTicket-plugins/commit/0b59afbd2d4ccd0522552198a9aaf1ec05b5071e https://nvd.nist.gov https://github.com/reewardius/CVE-2022-31890

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-31890

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect