5 matches found
CVE-2026-2547
LigeroSmart up to version 6.1.26 is affected. The vulnerable component is AgentDashboard in /otrs/index.pl, where manipulating the Subaction argument triggers cross-site scripting. Remote exploitation is possible, and the exploit is publicly available. No remediation details are provided in the s...
LigeroSmart 代码注入漏洞
LigeroSmart is an open-source management platform developed by LigeroSmart. Versions of LigeroSmart 6.1.26 and earlier contained a code injection vulnerability. This vulnerability stemmed from improper handling of the parameter Subaction by the AgentDashboard function in the file/otrs/index.pl,...
CVE-2007-2524
Cross-site scripting XSS vulnerability in index.pl in Open Ticket Request System OTRS 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, b...
DEBIAN-CVE-2007-2524
Cross-site scripting XSS vulnerability in index.pl in Open Ticket Request System OTRS 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, b...
CVE-2007-2524
Cross-site scripting XSS vulnerability in index.pl in Open Ticket Request System OTRS 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, b...