Latest high severity vulnerabilities for vendor "otrs" - SecAlerts

Filters

Software

otrs open ticket request system

Otrs OtrsAgents are able to lock the ticket without the "Owner" permission

7.5

First published (updated )

Otrs OtrsUnnecessary data is written to log if issues during indexing occurs

7.5

EPSS

0.09%

First published (updated )

Otrs OtrsPassword is send back to client

8.1

EPSS

0.09%

First published (updated )

Otrs OtrsHost header injection by attachments in web service

8.8

First published (updated )

Otrs OtrsCode execution via System Configuration

7.2

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Example email

Otrs OtrsInformation disclouse and DoS via websocket push events

8.1

First published (updated )

Otrs OtrsCode execution through ACL creation

7.8

First published (updated )

Otrs OtrsInformation exposure of template content due to missing check of permissions

7.5

First published (updated )

Otrs OtrsDoS attack using email

7.5

First published (updated )

Otrs OtrsPerl Code execution in Template Toolkit

8.8

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Example email

Otrs OtrsSQL Injection

8.8

First published (updated )

Otrs OtrsXSS in the ticket overview screens

7.5

First published (updated )

Otrs OtrsSession / Password / Password token leak

8.1

First published (updated )

Otrs OtrsInformation Disclosure

7.5

First published (updated )

Otrs OtrsDenial of service

7.5

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Example email

Otrs Open Ticket Request SystemAn issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.…

8.8

First published (updated )

Otrs OtrsInfoleak

8.8

First published (updated )

Otrs OtrsCode Injection

8.8

First published (updated )

Debian Debian LinuxIn the Agent Frontend in Open Ticket Request System (OTRS) 3.3.x through 3.3.18, with a crafted URL …

8.8

First published (updated )

Otrs OtrsCode Injection, Input Validation

8.8

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Example email

Otrs OtrsIn Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5.0.1…

8.8

First published (updated )

Otrs OtrsSQL Injection

7.5

First published (updated )

Otrs OtrsOS Command Injection, Command Injection

7.5

First published (updated )

Otrs OtrsSQL Injection

7.5

First published (updated )

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203