Zammad is an open source web-based help desk/customer support system. an elevation of privilege vulnerability exists in versions of Zammad prior to 4.1.1. An attacker could exploit this vulnerability by sending a specially crafted request to modify other agent accounts to be able to log in with administrator privileges.
CPE | Name | Operator | Version |
---|---|---|---|
zammad zammad | lt | 4.1.1 |