← back
CVE-2004-0613

CVE-2004-0613

EPSS 9.9%
osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/24225unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=108786779500957&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16477https://exchange.xforce.ibmcloud.com/vulnerabilities/16478http://www.securityfocus.com/bid/10586