Skip to content

Pentesting osTicket

osTicket is an open-source support ticketing system. osTicket is written in PHP and uses a MySQL backend.  It can be installed on Windows or Linux.

Most osTicket installs will showcase the osTicket logo with the phrase powered by in front of it in the page's footer. The footer may also contain the words Support Ticket System.

Footprinting

Only staff and users with administrator privileges can access the admin panel.

osTicket documentation

Support portals like osTicket can sometimes be used to obtain an email address for a company domain

Login

Login page is typically located at: http://$target/scp/login.php

Exploitation

osTicket version 1.14.1 suffers from CVE-2020-24881 which was an SSRF vulnerability. If exploited, this type of flaw may be leveraged to gain access to internal resources or perform internal port scanning.

Last update: 2025-02-07
Created: February 7, 2025 22:46:37