Description
SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.
Remediation
References
Related Vulnerabilities
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-1607)
Drupal Core 9.2.x Cross-Site Scripting (9.2.0 - 9.2.10)
Trac Incorrect Default Permissions Vulnerability (CVE-2010-5108)
Oracle Database Server SYS Account privilege issue (CVE-2021-2000)
Internet Information Services Other Vulnerability (CVE-1999-0449)