mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
823 B
823 B
CVE-2014-1695
Description
Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.20, 3.2.x before 3.2.15, and 3.3.x before 3.3.5 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML email.
POC
Reference
- http://adamziaja.com/poc/201401-xss-otrs.html
- http://packetstormsecurity.com/files/131654/OTRS-3.x-Cross-Site-Scripting.html
- https://www.exploit-db.com/exploits/36842/
Github
No PoCs found on GitHub currently.