Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2013-0196)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.02366EPSS
Exploits0References7
OSV
OSV
added 2020/02/21 4:15 p.m.7 views

CVE-2013-4088

Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System OTRS 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 does not properly restrict tickets, which allows remote attackers with a valid agent login to read restricted tickets via a crafted URL involving the ticket spl...

6.5CVSS6.2AI score0.02366EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2020/02/21 4:15 p.m.36 views

CVE-2013-4088

Kernel/Modules/AgentTicketWatcher.pm in Open Ticket Request System OTRS 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 does not properly restrict tickets, which allows remote attackers with a valid agent login to read restricted tickets via a crafted URL involving the ticket spl...

6.5CVSS6.8AI score0.02366EPSS
Exploits0References2
CVE
CVE
added 2020/02/21 3:48 p.m.147 views

CVE-2013-4088

Summary (CVE-2013-4088) : Open Ticket Request System (OTRS) components Kernel/Modules/AgentTicketWatcher.pm in OTRS 3.0.x before 3.0.21, 3.1.x before 3.1.17, and 3.2.x before 3.2.8 allowed remote attackers with a valid agent login to read restricted tickets via a crafted URL using the ticket spli...

6.5CVSS6.2AI score0.02366EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2013/08/02 12:0 a.m.51 views

DSA-2733-1 otrs2 - SQL injection

Bulletin has no description...

8.8CVSS6.5AI score0.01322EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/08/02 12:0 a.m.39 views

Debian Security Advisory DSA 2733-1 (otrs2 - SQL injection)

It was discovered that otrs2, the Open Ticket Request System, does not properly sanitise user-supplied data that is used on SQL queries. An attacker with a valid agent login could exploit this issue to craft SQL queries by injecting arbitrary SQL code through manipulated URLs. OpenVAS Vulnerabili...

4.3CVSS0.4AI score0.05792EPSS
Exploits2References1
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.64 views

[ MDVSA-2013:188 ] otrs

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2013:188 http://www.mandriva.com/en/support/security/ Package : otrs Date : July 2, 2013 Affected: Business Server 1.0 Problem Description: Updated otrs package fixes security vulnerabilities: An attacker with a...

6.5AI score0.02366EPSS
Exploits0
OSV
OSV
added 2013/07/01 7:16 p.m.10 views

MGASA-2013-0196 Updated otrs package fixes security vulnerabilities

An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see CVE-2013-3551, CVE-2013-4088...

6.5CVSS6.2AI score0.02366EPSS
Exploits0References6
Mageia
Mageia
added 2013/07/01 7:16 p.m.55 views

Updated otrs package fixes security vulnerabilities

An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see CVE-2013-3551, CVE-2013-4088...

6.5CVSS3.9AI score0.02366EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2013/06/20 12:0 a.m.37 views

FreeBSD : otrs -- information disclosure (8b97d289-d8cf-11e2-a1f5-60a44c524f57)

The OTRS Project reports : An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

6.5CVSS6.8AI score0.02366EPSS
Exploits0References3
Debian
Debian
added 2013/06/19 9:38 p.m.42 views

[SECURITY] [DSA 2712-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2712-1 [email protected] http://www.debian.org/security/ Florian Weimer June 19, 2013 http://www.debian.org/security/faq -...

6.5CVSS6.7AI score0.02366EPSS
Exploits0
Rows per page
Query Builder