Vulnerabilities

CVE-2019-10067

by Fred · 21/05/2019

An issue was discovered in Open Ticket Request System (OTRS) 7.x through 7.0.6 and Community Edition 5.0.x through 5.0.35 and 6.0.x through 6.0.17. An attacker who is logged into OTRS as an agent user with appropriate permissions may manipulate the URL to cause execution of JavaScript in the context of OTRS.

Date published : 2019-05-21

Security Advisory 2019-05: Security Update for OTRS Framework

http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00038.html

Similar

Tags: Cybersecurity Alert