CVE-2019-14750

MEDIUM NUCLEI

osTicket < 1.10.7 and 1.12.x < 1.12.1 - Stored Cross-Site Scripting in Installer Firstname/Lastname Fields

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-14750. PoCs published by Aishwarya Iyer. A Nuclei detection template is also available.

AI-analyzed exploit summary This is a writeup describing a stored XSS vulnerability in osTicket before 1.10.7 and 1.12.x before 1.12.1. The vulnerability allows malicious scripts to be stored in the firstname and lastname fields during setup, leading to execution when accessed.

Description

An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. Stored XSS exists in setup/install.php. It was observed that no input sanitization was provided in the firstname and lastname fields of the application. The insertion of malicious queries in those fields leads to the execution of those queries. This can further lead to cookie stealing or other malicious actions.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Aishwarya Iyer · textwebappsphp

https://www.exploit-db.com/exploits/47226

View Code ZIP pw:eip

This is a writeup describing a stored XSS vulnerability in osTicket before 1.10.7 and 1.12.x before 1.12.1. The vulnerability allows malicious scripts to be stored in the firstname and lastname fields during setup, leading to execution when accessed.

Classification

Writeup 90%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: osTicket < 1.10.7, osTicket 1.12.x < 1.12.1

No auth needed

Prerequisites: access to the setup/install.php page

MITRE ATT&CK

T1189 - Drive-by Compromise

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

osTicket < 1.12.1 - Cross-Site Scripting

MEDIUMby TenBird

Shodan: title:"osTicket" || http.title:"osticket" || http.html:"powered by osticket" || http.title:"osticket installer"

FOFA: title="osticket" || body="powered by osticket" || title="osticket installer"

References (5)

Core 5

Core References

Release Notes, Third Party Advisory x_refsource_misc

https://github.com/osTicket/osTicket/releases/tag/v1.12.1

Release Notes, Third Party Advisory x_refsource_misc

https://github.com/osTicket/osTicket/releases/tag/v1.10.7

Patch, Third Party Advisory x_refsource_misc

https://github.com/osTicket/osTicket/commit/c3ba5b78261e07a883ad8fac28c214486c854e12

View Patch ZIP pw:eip

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/154005/osTicket-1.12-Cross-Site-Scripting.html

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/47226

Scores

CVSS v3 6.1

EPSS 0.1169

EPSS Percentile 95.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-79

Status published

Products (1)

osticket/osticket < 1.10.7

Published Aug 07, 2019

Tracked Since Feb 18, 2026