Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:20 a.m.12 views

CVE-2010-4763

The ACL-customer-status Ticket Type setting in Open Ticket Request System OTRS before 3.0.0-beta1 does not restrict the ticket options after an AJAX reload, which allows remote authenticated users to bypass intended ACL restrictions on the 1 Status, 2 Service, and 3 Queue via selections...

6.5CVSS6.6AI score0.0157EPSS
Exploits1References1
NVD
NVD
added 2011/03/18 4:55 p.m.25 views

CVE-2010-4763

The ACL-customer-status Ticket Type setting in Open Ticket Request System OTRS before 3.0.0-beta1 does not restrict the ticket options after an AJAX reload, which allows remote authenticated users to bypass intended ACL restrictions on the 1 Status, 2 Service, and 3 Queue via selections...

6.5CVSS6.2AI score0.0157EPSS
Exploits1References2
OSV
OSV
added 2011/03/18 4:55 p.m.10 views

CVE-2010-4763

The ACL-customer-status Ticket Type setting in Open Ticket Request System OTRS before 3.0.0-beta1 does not restrict the ticket options after an AJAX reload, which allows remote authenticated users to bypass intended ACL restrictions on the 1 Status, 2 Service, and 3 Queue via selections...

6.5AI score
Exploits0References2
CVE
CVE
added 2011/03/18 4:0 p.m.55 views

CVE-2010-4763

OTRS before 3.0.0-beta1 is affected by CVE-2010-4763. The ACL-customer-status Ticket Type setting does not restrict options after an AJAX reload, allowing remote authenticated users to bypass ACLs for Status, Service, and Queue via selections. Affected component: OTRS Web UI/ACL logic in the tick...

6.5CVSS6.4AI score0.0157EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder