NuytsTech Security

CVE-2016-9139

by ·

Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment.

Date published : 2017-02-16

http://www.securityfocus.com/bid/94141

https://www.otrs.com/security-advisory-2016-02-security-update-otrs/

Tags: