Lucene search
OtrsOpen Ticket Request System
3 matches found
CVE-2018-19141
Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.
4.8CVSS5.2AI score0.00269EPSS
CVE-2018-16586
In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a logged in user opens it, the email could cause the browser to load external image or CSS resources.
4.3CVSS5.2AI score0.00606EPSS
CVE-2018-19142
Open Ticket Request System (OTRS) 6.0.x before 6.0.13 allows an admin to conduct an XSS attack via a modified URL.
4.8CVSS4.8AI score0.00295EPSS