exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-1771

почти 6 лет назад

Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 4.6

EPSS: Низкий

CVE-2020-1771

почти 6 лет назад

Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 4.6

EPSS: Низкий

CVE-2020-1771

почти 6 лет назад

Attacker is able craft an article with a link to the customer address ...

CVSS3: 4.6

EPSS: Низкий

GHSA-38fp-9j49-g4gm

больше 3 лет назад

Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.

CVSS3: 5.4

EPSS: Низкий

openSUSE-SU-2020:1475-1

больше 5 лет назад

Recommended update for otrs

EPSS: Низкий

openSUSE-SU-2020:0551-1

почти 6 лет назад

Recommended update for otrs

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-1771 Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 4.6	1% Низкий	почти 6 лет назад
CVE-2020-1771 Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 4.6	1% Низкий	почти 6 лет назад
CVE-2020-1771 Attacker is able craft an article with a link to the customer address ...	CVSS3: 4.6	1% Низкий	почти 6 лет назад
GHSA-38fp-9j49-g4gm Attacker is able craft an article with a link to the customer address book with malicious content (JavaScript). When agent opens the link, JavaScript code is executed due to the missing parameter encoding. This issue affects: ((OTRS)) Community Edition: 6.0.26 and prior versions. OTRS: 7.0.15 and prior versions.	CVSS3: 5.4	1% Низкий	больше 3 лет назад
openSUSE-SU-2020:1475-1 Recommended update for otrs			больше 5 лет назад
openSUSE-SU-2020:0551-1 Recommended update for otrs			почти 6 лет назад

Уязвимостей на страницу