Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

ATTACKERKB
ATTACKERKBadded 2026/06/01 3:32 a.m.8 views

CVE-2026-48209

An improper neutralization of user-controllable input in OTRS or OTRS Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting XSS attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into...

7.1CVSS6AI score0.00219EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologiesadded 2026/06/01 12:0 a.m.14 views

PT-2026-45265

An improper neutralization of user-controllable input in OTRS or OTRS Community Edition ticket handling allows authenticated attackers to perform reflected cross-site scripting XSS attacks via crafted request parameters associated with ticket actions. By injecting malicious JavaScript into...

7.1CVSS6AI score0.00219EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/06/16 12:0 a.m.3 views

OTRS 安全漏洞

OTRS is a service management solution from OTRS Germany. A security vulnerability exists in OTRS that stems from parameter injection. The following products and versions are affected: OTRS version 7.0.X, 8.0.X, 2023.X, 2024.X, 2025.X, and OTRS Community Edition version 6.0.x. The vulnerability is...

3.8CVSS6.9AI score0.00238EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2025/01/28 12:23 a.m.3 views

SUSE CVE-2024-43445

A vulnerability exists in OTRS and OTRS Community Edition that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. This issue affects:...

5.4CVSS6.8AI score0.00224EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/08/26 12:0 a.m.2 views

OTRS 安全漏洞

OTRS is a service management solution from the German company OTRS. A security vulnerability exists in OTRS that stems from an improper neutralization of input by an attacker with administrator privileges, allowing cross-site scripting attacks in Process Management targeting other administrators...

4.9CVSS5.9AI score0.00358EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/03/20 12:0 a.m.5 views

OTRS 跨站脚本漏洞

OTRS is an application from OTRS Germany. A service management software. A security vulnerability exists in OTRS AG OTRS Ticket Actions modules, OTRS AG OTRS Community Edition Ticket Actions modules, which stems from improper input validation of the product, and affects the following products and...

6.1CVSS4.9AI score0.00431EPSS
Exploits0References2
OSV
OSVadded 2020/01/10 3:15 p.m.2 views

UBUNTU-CVE-2020-1767

Agent A is able to save a draft i.e. for customer reply. Then Agent B can open the draft, change the text completely and send it in the name of Agent A. For the customer it will not be visible that the message was sent by another agent. This issue affects: OTRS Community Edition 6.0.x version...

4.3CVSS6.1AI score0.01241EPSS
Exploits0References3
Rows per page
Query Builder