Описание
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an HTML e-mail.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 2.4.9+dfsg1-3 |
| hardy | ignored | end of life |
| karmic | ignored | end of life |
| lucid | ignored | end of life |
| maverick | ignored | end of life |
| natty | not-affected | 2.4.9+dfsg1-3 |
| oneiric | not-affected | 2.4.9+dfsg1-3 |
| precise | not-affected | 2.4.9+dfsg1-3 |
| quantal | not-affected | 2.4.9+dfsg1-3 |
Показывать по
2.6 Low
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an HTML e-mail.
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2. ...
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an HTML e-mail.
2.6 Low
CVSS2