Exposição de otrs

Issue trackers

18

score de exposição

40

sites usam

0

em exploração

1

críticos

CVEs

76 resultados

CVE-2021-36097LOWAgents are able to lock the ticket without the "Owner" permissionEPSS 0.5%CVE-2022-0473LOWDynamic field error message is vulnerable to XSSEPSS 0.5%CVE-2023-38059MEDIUMExternal pictures can be loaded even if not allowed by configurationEPSS 0.5%CVE-2022-39050MEDIUMPossible XSS stored in customer informationEPSS 0.5%CVE-2022-3501LOWInformation exposure of template content due to missing check of permissionsEPSS 0.4%CVE-2021-36096MEDIUMSupport Bundle includes S/Mime and PGP secret or PINEPSS 0.4%CVE-2023-1248MEDIUM Possible XSS in Ticket ActionsEPSS 0.4%CVE-2022-0475LOWPossible XSS attack via translationEPSS 0.4%CVE-2024-43442MEDIUMStored XSS in System ConfigurationEPSS 0.4%CVE-2024-6540MEDIUMInformation exlosure in external interfaceEPSS 0.4%CVE-2024-43444HIGHPasswords are written to Admin Log ModuleEPSS 0.4%CVE-2023-5421LOW Possible XSS execution in customer information EPSS 0.4%CVE-2026-48188CRITICALSQL Injection via MySQL Quote MethodEPSS 0.4%CVE-2024-43443MEDIUMStored XSS in process managementEPSS 0.4%CVE-2024-23792MEDIUMInsufficient access controlEPSS 0.3%CVE-2026-48208MEDIUMDenial-of-Service via SVG Rendering in TicketEPSS 0.3%CVE-2023-38057MEDIUMXSS stored in survey answersEPSS 0.3%CVE-2023-38058MEDIUMTickets can be moved without permissionsEPSS 0.3%CVE-2023-1250HIGHCode execution through ACL creationEPSS 0.3%CVE-2023-5422HIGHSSL Certificates are not checked for E-Mail HandlingEPSS 0.3%

← anteriorpágina 3 / 4próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →