Lucene search
Ubuntu.comUB:CVE-2005-3894HistoryNov 29, 2005 - 12:00 a.m.
CVE-2005-3894
2005-11-2900:00:00
ubuntu.com
ubuntu.com
5
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.4%
Multiple cross-site scripting (XSS) vulnerabilities in index.pl in Open
Ticket Request System (OTRS) 1.0.0 through 1.3.2 and 2.0.0 through 2.0.3
allow remote authenticated users to inject arbitrary web script or HTML via
(1) hex-encoded values in the QueueID parameter and (2) Action parameters.
Related
cve
cve
CVE-2005-3894
2005-11-29 21:03:00
cvelist
cvelist
CVE-2005-3894
2005-11-29 21:00:00
nessus
nessus
Debian DSA-973-1 : otrs - several vulnerabilities
2006-10-14 00:00:00
debian
debian
[SECURITY] [DSA 973-1] New OTRS packages fix several vulnerabilities
2006-02-15 07:57:03
[SECURITY] [DSA 973-1] New OTRS packages fix several vulnerabilities
2006-02-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 973-1 (otrs)
2008-01-17 00:00:00
OTRS 1.0.0 - 1.3.2, 2.0.0 - 2.0.3 Multiple Input Validation Vulnerabilities
2013-09-25 00:00:00
Debian: Security Advisory (DSA-973-1)
2008-01-17 00:00:00
osv
osv
otrs - several
2006-02-15 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.4%
Related for UB:CVE-2005-3894