Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an HTML e-mail.
Software | From | Fixed in |
---|---|---|
otrs / otrs | 2.4.1 | 2.4.1.x |
otrs / otrs | 2.4.5 | 2.4.5.x |
otrs / otrs | 2.4.6 | 2.4.6.x |
otrs / otrs | 2.4.3 | 2.4.3.x |
otrs / otrs | 2.4.4 | 2.4.4.x |
otrs / otrs | 2.4.2 | 2.4.2.x |
otrs / otrs | 2.4.8 | 2.4.8.x |
otrs / otrs | 2.4.7 | 2.4.7.x |