osTicket Hidden Form Field Upload Size Bypass Vulnerability

CVE-2004-0614 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

osTicket trusts a hidden form field in the submit form to limit the upload size of a document, which could allow remote attackers to upload a file of any size.

Learn more about our Web Application Penetration Testing UK.