Every CVE whose affected-product data names Otrs Otrs Itsm, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2013-4717 — CVSS 8.8 (high): Multiple SQL injection vulnerabilities in Open Ticket Request System (OTRS) Help Desk 3.0.x before 3.0.22, 3.1.x before 3.1.18, and 3.2.x…
CVE-2013-3551 — CVSS 6.5 (medium): Kernel/Modules/AgentTicketPhone.pm in Open Ticket Request System (OTRS) 3.0.x before 3.0.20, 3.1.x before 3.1.16, and 3.2.x before 3.2.7…
CVE-2013-2625 — CVSS 6.5 (medium): An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before…
CVE-2021-36100 — CVSS 6.4 (medium): Specially crafted string in OTRS system configuration can allow the execution of any system command.
CVE-2013-2637 — CVSS 6.1 (medium): A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2.0.8 via…
CVE-2013-4718 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) ITSM 3.0.x before 3.0.9, 3.1.x before 3.1.10, and 3.2.x…
CVE-2012-2582 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.13, 3.0.x before…
CVE-2012-4600 — CVSS 2.6 (low): Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) Help Desk 2.4.x before 2.4.14, 3.0.x before 3.0.16, and 3.1.x…