VDB
DEBIAN-CVE-2019-9751
DEBIAN-CVE-2019-9751
PUBLISHED
CVSS 4.800000190734863 MEDIUM
An issue was discovered in Open Ticket Request System (OTRS) 6.x before 6.0.17 and 7.x before 7.0.5. An attacker who is logged into OTRS as an admin user may manipulate the URL to cause execution of JavaScript in the context of OTRS. This is related to Kernel/Output/Template/Document.pm.
Risk Scores
CVSS v3.0
4.800000190734863
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | otrs2 | 0, 2.0.4, 2.0.4 |
Timeline
- Mar 13, 2019 CVE Published
- Apr 28, 2026 CVE Updated