Every CVE whose affected-product data names Otrs Time Accounting, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2021-21442 — CVSS 4.5 (medium): In the project create screen it's possible to inject malicious JS code to the certain fields. The code might be executed in the Reporting…