CVE-2010-4071

2011-01-20T19:00:00
ID CVE-2010-4071
Type cve
Reporter cve@mitre.org
Modified 2011-01-24T05:00:00

Description

Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an HTML e-mail.