Open Ticket Request System (OTRS) FAQ 2.0.5

CPE Details

Open Ticket Request System (OTRS) FAQ 2.0.5
otrs
faq
2.0.5
2016-09-19
15h48 +00:00
2016-09-19
15h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:otrs:faq:2.0.5:*:*:*:*:*:*:*

Informations

Vendor

otrs

Product

faq

Version

2.0.5

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2013-2637 2020-02-12 15h07 +00:00 A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via changes, workorder items, and FAQ articles, which could let a remote malicious user execute arbitrary code.
6.1
Medium
CVE-2013-2625 2019-11-27 17h08 +00:00 An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified
6.5
Medium
CVE-2016-5843 2016-09-16 23h00 +00:00 Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters.
9.4
Critical