What the vulnerability does
01Description
Cross-site Scripting (XSS) - Stored in GitHub repository osticket/osticket prior to v1.16.6.
CVE-2023-1316
MEDIUM
CVE-2023-1316: Cross-site Scripting (XSS) - Stored in osticket/osticket
CVSS base score
4.5/10
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N
Key dates
02Disclosure timeline
March 10, 2023
CVE published
March 3, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-22614 WeGIA Cross-Site Scripting (XSS) Stored endpoint 'dependente_editarInfoPessoal.php ' parameters 'nome' 'SobrenomeForm'
CVE-2025-68864 WordPress Infility Global plugin <= 2.15.11 - Cross Site Scripting (XSS) vulnerability
CVE-2025-30190
CVE-2022-1290 Stored XSS in "Name", "Group Name" & "Title" in polonel/trudesk
CVE-2025-3733 baguetteBox.js - Moderately critical - Cross Site Scripting - SA-CONTRIB-2025-034
