DescriptionMultiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x before 2.4.8 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
- SUSE-SR:2010:024, published Thu, 23 Dec 2010 13:00:00 +0000
- openSUSE-SU-2010:1061-1, published Wed, 15 Dec 2010 12:08:14 +0100 (CET)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE 11.3|| |