Lucene search
RootSSV:62037HistoryApr 02, 2014 - 12:00 a.m.
OTRS Help Desk点击劫持漏洞
2014-04-0200:00:00
Root
www.seebug.org
9
0.002 Low
EPSS
Percentile
52.9%
CVE ID:CVE-2014-2554
OTRS Help Desk是开源资源服务管理解决方案。
由于应用程序允许用户通过未经验证的HTTP请求执行某些操作,攻击者可以利用漏洞欺骗用户点击特制链接执行未指定的操作。
0
OTRS Help Desk 3.x
OTRS Help Desk 3.1.21, 3.2.16, 或3.3.6版本以修复此漏洞,建议用户下载使用:
https://www.otrs.com/security-advisory-2014-05-clickjacking-issue/
Related
nessus
nessus
FreeBSD : otrs -- Clickjacking issue (ffa7c6e4-bb29-11e3-8136-60a44c524f57)
2014-04-04 00:00:00
Mandriva Linux Security Advisory : otrs (MDVSA-2014:111)
2014-06-10 00:00:00
openSUSE Security Update : otrs (openSUSE-SU-2014:0561-1)
2014-06-13 00:00:00
prion
prion
Code injection
2014-04-23 15:55:00
debiancve
debiancve
CVE-2014-2554
2014-04-23 15:55:00
cvelist
cvelist
CVE-2014-2554
2014-04-23 14:00:00
freebsd
freebsd
otrs -- Clickjacking issue
2014-04-01 00:00:00
cve
cve
CVE-2014-2554
2014-04-23 15:55:00
ubuntucve
ubuntucve
CVE-2014-2554
2014-04-23 00:00:00
openvas
openvas
OTRS Help Desk Cross Site Scripting/Clickjacking Vulnerability
2014-04-03 00:00:00
Mageia: Security Advisory (MGASA-2014-0194)
2022-01-28 00:00:00
securityvulns
securityvulns
[ MDVSA-2014:111 ] otrs
2014-06-14 00:00:00
mageia
mageia
Updated otrs packages fix multiple vulnerabilities
2014-04-24 23:11:34
osv
osv
otrs2 - security update
2017-09-30 00:00:00
debian
debian
[SECURITY] [DLA 1119-1] otrs2 security update
2017-09-30 19:36:15