H3-2025-0065¶

osTicket Anonymous Ticket Creation with Rich Text Content Enabled

Description¶

The osTicket server is running with a default configuration that permits anyone to submit tickets containing rich-text content.

Impact¶

Anonymous users can submit tickets containing rich-text content, providing the opportunity to exploit potential vulnerabilities such as XSS, SSRF, or LFI.

References¶

• osTicket Admin Panel: User Settings
• osTicket Admin Panel: System Settings
• CWE-1188: Initialization of a Resource with an Insecure Default