Security Advisory

CVE-2012-4600

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-31 14:00:00

Last updated 2024-08-06 20:42:54

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.14, 3.0.x before 3.0.16, and 3.1.x before 3.1.10, when Firefox or Opera is used, allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with nested HTML tags.

← Browse all CVEs View on cve.org ↗