otrs ag ((otrs)) Community Edition Vulnerabilities
Otrs%20ag ((otrs)) Community Edition vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Resource Management Flaw in OTRS E-mail Handling by OTRS
CVE-2026-48187Otrs AgOtrs5.7MEDIUMImproper Input Validation Vulnerability in OTRS and OTRS Community Edition
CVE-2026-48188Otrs AgOtrs9.1CRITICALImproper SVG Content Neutralization in OTRS Affects Multiple Versions
CVE-2026-48208Otrs AgOtrs6.5MEDIUMReflected Cross-Site Scripting Vulnerability in OTRS by OTRS
CVE-2026-48209Otrs AgOtrs7.1HIGHParameter Injection Vulnerability in OTRS Admin and Agent Interface
CVE-2025-24388Otrs AgOtrs3.8LOWLog Information Disclosure in OTRS by OTRS AG
CVE-2025-24389Otrs AgOtrs6.3MEDIUMImproper Privilege Management in OTRS Affects Multiple Versions
CVE-2024-43446Otrs AgOtrs3.5LOWContent-Type Sniffing Vulnerability in OTRS by OTRS AG
CVE-2024-43445Otrs AgOtrs5.4MEDIUMPlain Text Passwords Displayed in OTRS Admin Log Module
CVE-2024-43444Otrs AgOtrs8.2HIGHCross-Site Scripting (XSS) Vulnerability Affects OTRS and Community Edition
CVE-2024-43443Otrs AgOtrs4.9MEDIUMImproper Neutralization of Input Leads to Cross-Site Scripting Vulnerability in OTRS
CVE-2024-43442Otrs AgOtrs4.9MEDIUMUpload of files outside application directory
CVE-2024-23793Otrs AgOtrs6.3MEDIUMExternal pictures can be loaded even if not allowed by configuration
CVE-2023-38059Otrs AgOtrs5.3MEDIUMPossible XSS execution in customer information
CVE-2023-5421OTRS AGOTRS5.5MEDIUMSSL Certificates are not checked for E-Mail Handling
CVE-2023-5422OTRS AGOTRS9.1CRITICALCode execution via System Configuration
CVE-2023-38056OTRS AGOTRS7.2HIGHXSS stored in survey answers
CVE-2023-38057Otrs AgOtrs4.1MEDIUMHost header injection by attachments in web service
CVE-2023-38060Otrs AgOtrs8.8HIGHPossible XSS in Ticket Actions
CVE-2023-1248Otrs AgOtrs6.1MEDIUMCode execution through ACL creation
CVE-2023-1250Otrs AgOtrs7.4HIGHSQL Injection via OTRS Search API
CVE-2022-4427Otrs AgOtrs6.5MEDIUMDoS attack using email
CVE-2022-39052Otrs AgOtrs7.5HIGHPossible XSS in Admin Interface
CVE-2022-39049Otrs AgOtrs3.5LOWPossible XSS stored in customer information
CVE-2022-39050Otrs AgOtrs4.6MEDIUMPerl Code execution in Template Toolkit
CVE-2022-39051Otrs AgOtrs6.8MEDIUM