CVE-2022-0475
Possible XSS attack via translation
Malicious translator is able to inject JavaScript code in few translatable strings (where HTML is allowed). The code could be executed in the Package manager. This issue affects: OTRS AG OTRS 7.0.x version: 7.0.32 and prior versions, 8.0.x version: 8.0.19 and prior versions.
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N
Productos afectados
OTRS AG · OTRS¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →