Showing 1 - 1 of 1

CVE-2014-2553

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before 3.3.6 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to dynamic fields.

Related Files

Mandriva Linux Security Advisory 2014-111: Posted Jun 10, 2014; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2014-111 - A logged in attacker could insert special content in dynamic fields, leading to JavaScript code being executed in OTRS. An attacker could embed OTRS in a hidden iframe tag of another page, tricking the user into clicking links in OTRS.; tags | advisory, javascript; systems | linux, mandriva; advisories | CVE-2014-2553, CVE-2014-2554; SHA-256 | 25a9b8566656ec84dcef7b521af403abd6e8c20af97b14b958771c7694673d6e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 260 files
indoushka 124 files
Ubuntu 97 files
Gentoo 36 files
Debian 25 files
Jasper Nota 25 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Apple 9 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,107)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,887)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,614)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,775)
UNIX (9,439)
UnixWare (187)
Windows (6,676)
Other

CVE-2014-2553

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems