CVE-2019-9752
Vulnerability CVE-2019-9752 affects OTRS (Open Ticket Request System): an attacker who is logged in as an agent or customer can upload a crafted resource, triggering JavaScript execution in the OTRS context due to Content-type mishandling in Kernel/Modules/PictureUpload.pm. Affected versions are ...