Filter
-Infinity
0
Trending
OTRSInformation exposure of template content due to missing check of permissions
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OTRSHost header injection by attachments in web service
8.8
First published (updated )
OTRSSMTP Password will be shown in cleartext on some SMTP errors
6.3
EPSS
0.04%
First published (updated )
OTRSImproper check of permissions in Generic Interface
3.5
First published (updated )
OTRSMissing X-Content-Type-Options: nosniff Header Allows MIME Type Sniffing
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OTRSInformation disclouse and DoS via websocket push events
8.1
First published (updated )
OTRSPossible XSS execution in customer information
5.5
EPSS
0.46%
First published (updated )
OTRSSSL Certificates are not checked for E-Mail Handling
9.1
EPSS
0.35%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OTRS - Open Ticket Request SystemAgent is able to link customer's Config Items without permission
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.