Security Advisory

CVE-2019-9751

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-03-13 22:00:00

Last updated 2024-09-16 20:42:19

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Open Ticket Request System (OTRS) 6.x before 6.0.17 and 7.x before 7.0.5. An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of JavaScript in the context of OTRS. This is related to Kernel/Output/Template/Document.pm.

← Browse all CVEs View on cve.org ↗