The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of OTRS Help Desk

1	OTRS Help Desk: information disclosure via Ticket List An attacker can bypass access restrictions to data via Ticket List of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-18179, OSA-2019-14, VIGILANCE-VUL-30884

2	OTRS: Cross Site Scripting An attacker can trigger a Cross Site Scripting of OTRS, in order to run JavaScript code in the context of the web site... CVE-2019-16375, OSA-2019-13, VIGILANCE-VUL-30529

2	OTRS Help Desk: privilege escalation via Session ID Link Sharing An attacker can bypass restrictions via Session ID Link Sharing of OTRS Help Desk, in order to escalate his privileges... CVE-2019-12746, DLA-1877-1, OSA-2019-10, VIGILANCE-VUL-29758

2	OTRS Help Desk: information disclosure via Search Results Company Tickets An attacker can bypass access restrictions to data via Search Results Company Tickets of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-13457, OSA-2019-11, VIGILANCE-VUL-29757

2	OTRS Help Desk: information disclosure via Template Tags Password Hashs An attacker can bypass access restrictions to data via Template Tags Password Hashs of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-13458, DLA-1877-1, OSA-2019-12, VIGILANCE-VUL-29756

1	OTRS Help Desk: information disclosure via the search function An attacker can bypass access restrictions to data via the search function of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-9753, OSA-2019-03, VIGILANCE-VUL-29459

2	OTRS Help Desk: information disclosure via External Notes An attacker can bypass access restrictions to data via External Notes of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-12497, DLA-1816-1, OSA-2019-09, VIGILANCE-VUL-29446

2	OTRS Help Desk: information disclosure via Quoted Email An attacker can bypass access restrictions to data via Quoted Email of OTRS Help Desk, in order to obtain sensitive information... CVE-2019-12248, DLA-1816-1, OSA-2019-08, VIGILANCE-VUL-29445

2	OTRS Help Desk: three vulnerabilities An attacker can use several vulnerabilities of OTRS Help Desk... CVE-2019-10066, CVE-2019-10067, CVE-2019-9892, DLA-1774-1, OSA-2019-04, OSA-2019-05, OSA-2019-06, VIGILANCE-VUL-29146

1	OTRS Help Desk: Cross Site Scripting An attacker can trigger a Cross Site Scripting of OTRS Help Desk, in order to run JavaScript code in the context of the web site... CVE-2019-9751, OSA-2019-02, VIGILANCE-VUL-28697

Our database contains other pages. You can request a free trial to read them.

Display information about OTRS Help Desk:

https://community.otrs.com/otrs-community-edition-help-desk/