2020-12-28 07:55:27
mitre
PUBLISHED
An issue was discovered in Zammad before 3.5.1. A REST API call allows an attacker to change Ticket Article data in a way that defeats auditing.