CVE-2013-2637
N/A
N/A
Summary
A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via changes, workorder items, and FAQ articles, which could let a remote malicious user execute arbitrary code.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00027.html
- http://www.securityfocus.com/bid/58930
- http://www.exploit-db.com/exploits/24922
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83288
References
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00027.html
- http://www.securityfocus.com/bid/58930
- http://www.exploit-db.com/exploits/24922
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83288
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.