Vulnerability CVE-2022-31890
Published: 2023-04-05   Modified: 2023-04-06

Description:
SQL Injection vulnerability in audit/class.audit.php in osTicket osTicket-plugins before commit a7842d494889fd5533d13deb3c6a7789768795ae via the order parameter to the getOrder function.

 References:
https://checkmarx.com/blog/securing-open-source-solutions-a-study-of-osticket-vulnerabilities/
https://github.com/osTicket/osTicket-plugins/commit/0b59afbd2d4ccd0522552198a9aaf1ec05b5071e
Copyright 2026, cxsecurity.com

 

Back to Top