CVE-2018-19141

Publication date

2018-11-11 05:00:00

Family

mitre

State

PUBLISHED

Description

Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.