Back to directory
WRITEUP #464

Pitfalls of Desanitization: Leaking Customer Data from osTicket

XSSStored XSSSecurity code review
byOskar Zeino-Mahmalat
Program
Enhancesoft (osTicket)
Published
Feb 6, 2024
Added to HackDex
Feb 27, 2024
Read Full Writeuphttps://www.sonarsource.com/blog/pitfalls-of-desanitization-leaking-customer-data-from-osticket/
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
Front-End Frameworks: When Bypassing Built-in Sanitization Might Backfire
XSSClient-side Path Traversal
Stored XSS in LibreOffice
XSSStored XSS
Persistent XSS on Microsoft Bing.com by poisoning Bingbot indexing
XSSStored XSS
Government Emails at Risk: Critical Cross-Site Scripting Vulnerability in Roundcube Webmail
XSSSecurity code review

Built with ❤️ by Shubham Rawat