CVE-2015-1347

CVE-2015-1347CVE-2015-1347

enhancesoft / osticket

Description

Cross-site scripting (XSS) vulnerability in client.inc.php in osTicket before 1.9.5.1 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

Scoring

CVSS 4.3 ()
VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Last modified2026-07-10
Sourced from NVD. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.