A vulnerability was found in Enhancesoft osTicket up to 1.12.5 (Ticket Tracking Software). It has been rated as problematic. This issue affects an unknown function of the file include/class.queue.php of the component Parameter Handler. Upgrading to version 1.12.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Enhancesoft osTicket up to 1.12.5 Parameter include/class.queue.php queue-name cross site scripting
- Virtual Patching
- June 29, 2021
- 6:05 am
CVE-2024-24578 : JENS-MAUS RASPBERRYMATIC PRIOR 3.75.6.20240316 PATH TRAVERSAL
Description RaspberryMatic is an open-source operating system for HomeMatic internet-of-things devices. RaspberryMatic / OCCU prior to version 3.75.6.20240316 contains a
CVE-2024-2558 : TENDA AC18 15.03.05.05 /GOFORM/EXECCOMMAND FORMEXECOMMAND CMDINPUT STACK-BASED OVERFLOW
Description A vulnerability was found in Tenda AC18 15.03.05.05. It has been rated as critical. This issue affects the function
CVE-2024-28746 : APACHE AIRFLOW 2.8.0/2.8.1/2.8.2 UI IMPROPER AUTHENTICATION
Description Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenticated user with limited permissions to access