EPSS
Percentile
97.1%
A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via changes, workorder items, and FAQ articles, which could let a remote malicious user execute arbitrary code.
lists.opensuse.org/opensuse-updates/2013-08/msg00027.html
www.exploit-db.com/exploits/24922
www.securityfocus.com/bid/58930
exchange.xforce.ibmcloud.com/vulnerabilities/83288