Description
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
Remediation
References
Related Vulnerabilities
WordPress Plugin All-in-One WP Migration Multiple Cross-Site Request Forgery Vulnerabilities (7.1)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-7061)
WebLogic CVE-2018-3248 Vulnerability (CVE-2018-3248)
WordPress Plugin Polldaddy Polls & Ratings Cross-Site Scripting (2.0.24)
Apache HTTP Server Improper Input Validation Vulnerability (CVE-2012-0021)