The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of OTRS Help Desk

OTRS Help Desk: infinite loop via Long Extensions Filenames
An attacker can trigger an infinite loop via Long Extensions Filenames of OTRS Help Desk, in order to trigger a denial of service...
CVE-2019-18180, OSA-2019-15, VIGILANCE-VUL-30885
OTRS Help Desk: information disclosure via Ticket List
An attacker can bypass access restrictions to data via Ticket List of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-18179, DLA-2053-1, OSA-2019-14, VIGILANCE-VUL-30884
OTRS: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of OTRS, in order to run JavaScript code in the context of the web site...
CVE-2019-16375, OSA-2019-13, VIGILANCE-VUL-30529
OTRS Help Desk: privilege escalation via Session ID Link Sharing
An attacker can bypass restrictions via Session ID Link Sharing of OTRS Help Desk, in order to escalate his privileges...
CVE-2019-12746, DLA-1877-1, OSA-2019-10, VIGILANCE-VUL-29758
OTRS Help Desk: information disclosure via Search Results Company Tickets
An attacker can bypass access restrictions to data via Search Results Company Tickets of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-13457, OSA-2019-11, VIGILANCE-VUL-29757
OTRS Help Desk: information disclosure via Template Tags Password Hashs
An attacker can bypass access restrictions to data via Template Tags Password Hashs of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-13458, DLA-1877-1, OSA-2019-12, VIGILANCE-VUL-29756
OTRS Help Desk: information disclosure via the search function
An attacker can bypass access restrictions to data via the search function of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-9753, OSA-2019-03, VIGILANCE-VUL-29459
OTRS Help Desk: information disclosure via External Notes
An attacker can bypass access restrictions to data via External Notes of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-12497, DLA-1816-1, OSA-2019-09, VIGILANCE-VUL-29446
OTRS Help Desk: information disclosure via Quoted Email
An attacker can bypass access restrictions to data via Quoted Email of OTRS Help Desk, in order to obtain sensitive information...
CVE-2019-12248, DLA-1816-1, OSA-2019-08, VIGILANCE-VUL-29445
OTRS Help Desk: three vulnerabilities
An attacker can use several vulnerabilities of OTRS Help Desk...
CVE-2019-10066, CVE-2019-10067, CVE-2019-9892, DLA-1774-1, OSA-2019-04, OSA-2019-05, OSA-2019-06, VIGILANCE-VUL-29146
Our database contains other pages. You can request a free trial to read them.

Display information about OTRS Help Desk: