3 matches found
CVE-2013-4718
Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS ITSM 3.0.x before 3.0.9, 3.1.x before 3.1.10, and 3.2.x before 3.2.7 allows remote authenticated users to inject arbitrary web script or HTML via an ITSM ConfigItem search...
CVE-2013-4718
CVE-2013-4718 describes a cross-site scripting (XSS) vulnerability in the Open Ticket Request System (OTRS) ITSM components. Affected are OTRS ITSM 3.0.x before 3.0.9, 3.1.x before 3.1.10, and 3.2.x before 3.2.7. The issue allows remote authenticated users to inject arbitrary web script or HTML t...
openSUSE Security Update : otrs (openSUSE-SU-2013:1338-1)
The ticket system OTRS was updated to 3.1.18 to fix various bugs and security issues. Update to 3.1.18 : - OSA-2013-05, CVE-2013-4717, CVE-2013-4718 fixed. - Fixed bug9561 - ACL restriction with CustomerID for DynamicFields at new Ticket screen not working. - Fixed bug9425 - Wrong created date fo...