Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2 days ago4 views

CVE-2026-48210

An improper default configuration in OTRS 2026.3.1 causes ticket article forwarding actions to enforce the “Is visible for customer” flag by default and prevent users from disabling it via the UI. This leads to unintended exposure of internal ticket information to the External Frontend This issue...

5.7CVSS5.5AI score0.00011EPSS
Exploits0References1
Cvelist
Cvelistadded last week41 views

CVE-2026-48210 Possible information disclosure via External Interface

An improper default configuration in OTRS 2026.3.1 causes ticket article forwarding actions to enforce the “Is visible for customer” flag by default and prevent users from disabling it via the UI. This leads to unintended exposure of internal ticket information to the External Frontend This issue...

5.7CVSS0.00011EPSS
Exploits0References1
CVE
CVEadded 2026/04/08 6:0 p.m.3 views

CVE-2026-34248

Zammad (web-based helpdesk) prior to 7.0.1 allowed customers in a shared organization to view fields not intended for customers (e.g., priority, internal ticket attributes) in the ticket detail view when opening a ticket from another user in the same shared org. The root cause is exposure of inte...

5.7CVSS5.9AI score0.00035EPSS
Exploits0References1Affected Software1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2018-2274

Malware in sbrugna...

4.3CVSS4.6AI score0.00226EPSS
Exploits0References3
Hacker One
Hacker Oneadded 2023/05/25 2:40 p.m.51 views

HackerOne: Create miscellaneous support ticket on anyone's account through [email protected] email

A vulnerability was discovered where an attacker could create support tickets on anyone's account by sending a fake email to [email protected]. This allowed the attacker to create tickets on behalf of victims or even HackerOne staff. The issue was resolved internally and the created tickets...

7AI score
Exploits0
SUSE CVE
SUSE CVEadded 2023/02/15 4:37 a.m.1 views

SUSE CVE-2017-16854

In Open Ticket Request System OTRS through 3.3.20, 4 through 4.0.26, 5 through 5.0.24, and 6 through 6.0.1, an attacker who is logged in as a customer can use the ticket search form to disclose internal article information of their customer tickets...

6.5CVSS7.1AI score0.00358EPSS
Exploits0References3
Hacker One
Hacker Oneadded 2019/11/11 12:36 p.m.67 views

Trint Ltd: SSO bypass in zendesk using trint organization able to leak internal ticket information

Summary hello there because in app.trint.com there's no email verification i able to login in your zendesk SSO using your organization your organization using domain @trint.com because there's no email verification i able to read and takeover + claim this email [email protected] and i able to...

Exploits0
Rows per page
Query Builder