SUSE CVE-2016-9139

Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment...

CVE-2016-9139

Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment...

CVE-2016-9139

Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment...

CVE-2016-9139

Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment...

CVE-2016-9139

Cross-site scripting XSS vulnerability in Open Ticket Request System OTRS 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment...

CVE-2016-9139

CVE-2016-9139 is a cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) affecting 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14. The issue is triggered via a crafted attachment, allowing remote attackers to inject script/HTML into the user’s browser. T...

openSUSE Security Update : otrs (openSUSE-2016-1316)

This update for otrs fixes the following security issues : - CVE-2016-9139: execution of JavaScript in OTRS context by opening malicious attachment OSA-2016-02, bsc1008017 In addition, OTRS was updated to 3.3.16, containing all upstream improvements and bug fixes. %NASLMINLEVEL 70300 C Tenable...