Lucene search
K

6 matches found

securityvulns
securityvulns
added 2014/05/05 12:0 a.m.59 views

[SECURITY] [DSA 2867-1] otrs2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2867-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 23, 2014 http://www.debian.org/security/faq -...

7.5CVSS0.8AI score0.01827EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2014/02/24 12:0 a.m.24 views

Debian DSA-2867-1 : otrs2 - several vulnerabilities

Several vulnerabilities were discovered in otrs2, the Open Ticket Request System. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-1694 Norihiro Tanaka reported missing challenge token checks. An attacker that managed to take over the session of a...

7.5CVSS5.8AI score0.01827EPSS
Exploits1References7
Debian
Debian
added 2014/02/23 8:42 p.m.19 views

[SECURITY] [DSA 2867-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2867-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 23, 2014 http://www.debian.org/security/faq -...

7.5CVSS0.9AI score0.01827EPSS
Exploits1
Debian
Debian
added 2014/02/23 8:42 p.m.27 views

[SECURITY] [DSA 2867-1] otrs2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2867-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso February 23, 2014 http://www.debian.org/security/faq -...

7.5CVSS7.1AI score0.01827EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2014/02/04 9:55 p.m.24 views

CVE-2014-1471

SQL injection vulnerability in the StateGetStatesByType function in Kernel/System/State.pm in Open Ticket Request System OTRS 3.1.x before 3.1.19, 3.2.x before 3.2.14, and 3.3.x before 3.3.4 allows remote attackers to execute arbitrary SQL commands via vectors related to a ticket search URL...

7.5CVSS6.2AI score0.01827EPSS
Exploits0References3
CVE
CVE
added 2014/02/04 4:0 p.m.74 views

CVE-2014-1471

CVE-2014-1471 affects Open Ticket Request System (OTRS): SQL injection in Kernel/System/State.pm via the ticket search URL, enabling an attacker with a valid customer or agent login to inject arbitrary SQL. Affected lines include OTRS 3.1.x before 3.1.19, 3.2.x before 3.2.14, and 3.3.x before 3.3...

7.5CVSS8.2AI score0.01827EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder