OTRS Multiple Input-Validation Vulnerabilities

vendor:

OTRS

by:

5.5

CVSS

MEDIUM

Input-Validation

CWE

Product Name: OTRS

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

OTRS Multiple Input-Validation Vulnerabilities

The OTRS application is prone to multiple input-validation vulnerabilities due to a failure in properly sanitizing user-supplied input. These vulnerabilities include SQL-injection, HTML-injection, and cross-site scripting vulnerabilities.

Mitigation:

To mitigate these vulnerabilities, it is recommended to implement proper input validation and sanitization techniques in the OTRS application.

Source

OTRS Multiple Input-Validation Vulnerabilities

Mitigation:

Exploit-DB raw data: