Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2022/10/19 12:0 a.m.11 views

OTRS XSS Vulnerability (OSA-2022-01)

OTRS is prone to a cross-site scripting XSS vulnerability. This VT has been deprecated as a duplicate of the VT SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

4.8CVSS4.9AI score0.0051EPSS
Exploits0References1
NVD
NVD
added 2022/02/07 11:15 a.m.10 views

CVE-2022-0473

OTRS administrators can configure dynamic field and inject malicious JavaScript code in the error message of the regular expression check. When used in the agent interface, malicious code might be exectued in the browser. This issue affects: OTRS AG OTRS 7.0.x version: 7.0.31 and prior versions...

4.8CVSS0.0051EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/02/07 11:15 a.m.25 views

CVE-2022-0473

OTRS administrators can configure dynamic field and inject malicious JavaScript code in the error message of the regular expression check. When used in the agent interface, malicious code might be exectued in the browser. This issue affects: OTRS AG OTRS 7.0.x version: 7.0.31 and prior versions...

4.8CVSS5.9AI score0.0051EPSS
Exploits0References2
CVE
CVE
added 2022/02/07 10:25 a.m.47 views

CVE-2022-0473

OTRS is vulnerable to a cross-site scripting (XSS) issue in dynamic fields used for the error message of a regular expression check. The attacker can inject malicious JavaScript that may execute in the browser when the agent interface is used. Affected product/version: OTRS AG OTRS 7.0.x, specifi...

4.8CVSS4.8AI score0.0051EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder