CVE-2022-32741
Attacker is able to determine if the provided username exists (and it’s valid) using Request New Password feature, based on the response time.
Date published : 2022-06-13
https://otrs.com/release-notes/otrs-security-advisory-2022-09/
Attacker is able to determine if the provided username exists (and it’s valid) using Request New Password feature, based on the response time.
Date published : 2022-06-13
https://otrs.com/release-notes/otrs-security-advisory-2022-09/