4 matches found
OTRS XSS Vulnerability (OSA-2022-01)
OTRS is prone to a cross-site scripting XSS vulnerability. This VT has been deprecated as a duplicate of the VT SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2022-0473
OTRS administrators can configure dynamic field and inject malicious JavaScript code in the error message of the regular expression check. When used in the agent interface, malicious code might be exectued in the browser. This issue affects: OTRS AG OTRS 7.0.x version: 7.0.31 and prior versions...
CVE-2022-0473
OTRS administrators can configure dynamic field and inject malicious JavaScript code in the error message of the regular expression check. When used in the agent interface, malicious code might be exectued in the browser. This issue affects: OTRS AG OTRS 7.0.x version: 7.0.31 and prior versions...
CVE-2022-0473
OTRS is vulnerable to a cross-site scripting (XSS) issue in dynamic fields used for the error message of a regular expression check. The attacker can inject malicious JavaScript that may execute in the browser when the agent interface is used. Affected product/version: OTRS AG OTRS 7.0.x, specifi...