Filter
AND

Versions

7.0.0
51
6.0.0
35
2.0.0
23
8.0.0
23
2.0.1
22
2.0.2
22
2.0.3
22
1.0.0
21
1.3.2
21
2.0.4
21
2.1.1
21
2.1.2
21
2.1.3
21
2.1.4
21
2.1.5
21
2.1.6
21
2.1.7
21
2.1.8
21
2.2.1
21
2.2.2
21
2.2.3
21
2.2.4
21
2.0.0-beta1
20
2.0.0-beta2
20
2.0.0-beta4
20
2.0.0-beta5
20
2.0.0-beta6
20
2.0.5
20
2.1.0-beta1
20
2.1.0-beta2
20
2.1.9
20
2.2.0-beta1
20
2.2.0-beta2
20
2.2.0-beta3
20
2.2.0-beta4
20
2.2.0-rc1
20
2.2.5
20
0.5-beta1
19
0.5-beta2
19
0.5-beta3
19
0.5-beta4
19
0.5-beta5
19
0.5-beta6
19
0.5-beta7
19
0.5-beta8
19
1.0-rc1
19
1.0-rc2
19
1.0-rc3
19
1.0.1
19
1.0.2
19
1.1-rc1
19
1.1.0-rc1
19
1.1.0-rc2
19
1.1.1
19
1.1.2
19
1.1.3
19
1.1.4
19
1.2.0-beta1
19
1.2.0-beta2
19
1.2.0-beta3
19
1.2.1
19
1.2.2
19
1.2.3
19
1.2.4
19
1.3.0-beta1
19
1.3.0-beta2
19
1.3.0-beta3
19
1.3.0-beta4
19
1.3.1
19
1.3.3
19
2.2.6
18
5.0.0
17
2.2.7
16
2.2.8
15
2.3.1
15
2.2.9
14
2.3.0-beta1
14
2.3.0-beta2
14
2.3.2
14
2.3.0-beta3
13
2.3.0-beta4
13
2.3.0-rc1
13
2.3.3
13
2.4.1
13
2.4.2
13
2.4.3
13
2.4.4
13
2.4.5
13
2.4.6
13
2.3.4
12
2.4.0-beta1
11
2.4.0-beta2
11
2.4.0-beta3
11
2.4.0-beta4
11
2.4.0-beta5
11
2.4.0-beta6
11
2.4.7
11
2.3.5
10
2.4.8
9
2.4.9
9
3.0.0-beta1
9
3.1.0
9
2.3.6
8
3.0.0-beta2
8
3.0.0-beta3
8
3.0.0-beta4
8
3.0.0-beta5
8
6.0.1
8
2.4.10
7
3.0.0-beta6
7
3.0.0-beta7
7
3.0.1
7
3.0.2
7
3.2.0
7
3.0.3
6
3.0.4
6
3.0.5
6
3.1.1
6
3.1.2
6
3.1.3
6
3.1.4
6
3.1.5
6
3.1.6
6
3.1.7
6
3.1.8
6
3.0.0
5
3.0.6
5
3.1.10
5
3.1.17
5
3.3.0
5
3.0.7
4
3.0.8
4
3.0.9
4
3.1.11
4
3.1.13
4
3.1.14
4
3.1.15
4
3.1.16
4
3.1.18
4
3.1.9
4
3.2.0-beta1
4
3.2.0-beta2
4
3.2.0-beta3
4
3.2.0-beta4
4
3.2.0-beta5
4
3.2.0-rc1
4
3.2.1
4
3.2.10
4
3.2.2
4
3.2.3
4
3.2.4
4
3.2.5
4
3.2.6
4
3.2.8
4
3.3.0-beta1
4
3.3.0-beta2
4
3.3.0-beta3
4
3.3.0-beta4
4
3.3.0-beta5
4
3.3.0-rc1
4
3.3.1
4
3.3.2
4
3.3.3
4
5.0.36
4
6.0.19
4
6.0.32
4
7.0.6
4
2.1.0
3
3.0.10
3
3.0.11
3
3.0.12
3
3.0.13
3
3.0.14
3
3.1.19
3
3.2.14
3
3.2.7
3
3.2.9
3
3.3.4
3
5.0.41
3
6.0.17
3
6.0.24
3
6.0.26
3
6.0.34
3
7.0.13
3
7.0.15
3
7.0.8
3
2.2.0
2
2.4.11
2
2.4.12
2
3.0.15
2
3.0.16
2
3.1.20
2
3.2.11
2
3.2.12
2
3.2.13
2
3.2.15
2
3.3.5
2
3.3.9
2
5.0.12
2
5.0.39
2
6.0.22
2
6.0.30
2
7.0.27
2
2.3.0
1
2.4.13
1
2.4.14
1
3.0.17
1
3.0.21
1
3.1.21
1
3.2.16
1
3.3.10
1
3.3.11
1
3.3.12
1
3.3.13
1
3.3.14
1
3.3.15
1
3.3.20
1
3.3.6
1
3.3.7
1
3.3.8
1
4.0.0-beta1
1
4.0.0-beta2
1
4.0.0-beta3
1
4.0.0-beta4
1
4.0.0-beta5
1
4.0.0-rc1
1
4.0.1
1
4.0.10
1
4.0.11
1
4.0.12
1
4.0.13
1
4.0.14
1
4.0.15
1
4.0.16
1
4.0.17
1
4.0.18
1
4.0.2
1
4.0.26
1
4.0.3
1
4.0.4
1
4.0.5
1
4.0.6
1
4.0.7
1
4.0.8
1
4.0.9
1
5.0.0-beta1
1
5.0.0-beta2
1
5.0.0-beta3
1
5.0.0-beta4
1
5.0.0-beta5
1
5.0.0-rc1
1
5.0.1
1
5.0.10
1
5.0.11
1
5.0.13
1
5.0.2
1
5.0.24
1
5.0.3
1
5.0.31
1
5.0.34
1
5.0.35
1
5.0.37
1
5.0.38
1
5.0.4
1
5.0.42
1
5.0.5
1
5.0.6
1
5.0.7
1
5.0.8
1
5.0.9
1
6.0.13
1
6.0.20
1
6.0.23
1
6.0.27
1
6.0.40
1
6.0.7
1
7.0.11
1
7.0.12
1
7.0.14
1
7.0.16
1
7.0.19
1
7.0.21
1
7.0.23
1
7.0.29
1
7.0.32
1
7.0.7
1
8.0.1
1
8.0.10
1
8.0.14
1
8.0.16
1
8.0.19
1
8.0.3
1
8.0.6
1
8.0.9
1

OTRSSMTP Password will be shown in cleartext on some SMTP errors

medium
6.3
EPSS
0.04%
First published (updated )
CVE-2025-24389

OTRSMissing Cookie Flags

medium
6.8
EPSS
0.04%
First published (updated )
CVE-2025-24390

OTRSMissing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing

medium
5.4
First published (updated )
CVE-2024-43445

OTRSPossible XSS execution in customer information

medium
5.5
First published (updated )
CVE-2023-5421

OTRSXSS

medium
4.8
First published (updated )
CVE-2019-9751

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OTRSXSS

medium
5.4
First published (updated )
CVE-2019-9752

OTRSInsufficient access control

medium
6.5
EPSS
0.05%
First published (updated )
CVE-2024-23792

OTRSTickets can be moved without permissions

medium
4.3
First published (updated )
CVE-2023-38058

OTRSXSS stored in survey answers

medium
5.4
First published (updated )
CVE-2023-38057

OTRSXSS in Survey Module

medium
4.8
First published (updated )
CVE-2021-21434

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OTRSPossible XSS in Customer user address book

medium
5.4
First published (updated )
CVE-2020-1771

OTRSXSS attack using special link in email

medium
6.5
First published (updated )
CVE-2021-36092

OTRSInformation disclosure in the External Interface

medium
4.3
First published (updated )
CVE-2022-1004

OTRSPossible XSS attack via translation

medium
5.4
First published (updated )
CVE-2022-0475

OTRSFAQ articles are shown to users without permission

medium
4.3
First published (updated )
CVE-2021-21438

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OTRSAutocomplete in the form login screens

medium
4.3
First published (updated )
CVE-2020-1769

OTRSThe CustomerInterface component in Open Ticket Request System (OTRS) before 2.2.8 allows remote auth…

medium
6.5
First published (updated )
CVE-2008-7279

OTRSAgent names disclosed in chat feature

medium
5.3
First published (updated )
CVE-2020-1777

OTRSInvalidating or changing user does not invalidate session

medium
4.3
First published (updated )
CVE-2020-1776

OTRSImproper handling of uploaded inline images

medium
6.1
First published (updated )
CVE-2020-1766

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OTRSThe S/MIME feature in Open Ticket Request System (OTRS) before 2.3.4 does not configure the RANDFILE…

medium
5
First published (updated )
CVE-2009-5057

OTRSInput Validation

medium
4.3
First published (updated )
CVE-2010-4766

OTRSAgents are able to lock the ticket without the "Owner" permission

medium
4.3
First published (updated )
CVE-2021-36097

OTRSInformation exposure in PDF export

medium
6.5
First published (updated )
CVE-2021-21435

OTRSInformation disclosure in external interface

medium
4.3
First published (updated )
CVE-2020-1775

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

OTRSThe customer-interface ticket-print dialog in Open Ticket Request System (OTRS) before 3.0.0-beta3 d…

medium
4
First published (updated )
CVE-2010-4761

OTRSSpoofing of From field in several screens

medium
5.3
First published (updated )
CVE-2020-1765

OTRSInput Validation

medium
5
First published (updated )
CVE-2008-7280

OTRSOpen Ticket Request System (OTRS) before 2.2.6, when customer group support is enabled, allows remot…

medium
6
First published (updated )
CVE-2008-7283

OTRSDoS attack using PostMaster filters

medium
5.3
First published (updated )
CVE-2021-36093

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203