CVE-2020-24881
Published
CVSS v3
9.8
CRITICAL
CVSS v2
7.5
HIGH
Affected
1
PROJECT
Description
SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.
The osTicket open source ticketing system official project repository, for versions 1.8 and later
GitHub