otrs

Top products

The 15 most recently published vulnerabilities affecting otrs.

• CVE-2026-48187Email with special content can lead to DoS5.7Jun 1, 2026
• CVE-2026-48188SQL Injection via MySQL Quote Method9.1Jun 1, 2026
• CVE-2026-48189Bypass DedicatedAgentToCustomerGroups Setting5.7Jun 1, 2026
• CVE-2026-48190Incorrect handling of permissions in External Interface Config Item List module3.5Jun 1, 2026
• CVE-2026-48191Wrong Permission Handling in Document Search Article Meta Filters3.5Jun 1, 2026
• CVE-2026-48208Denial-of-Service via SVG Rendering in Ticket6.5Jun 1, 2026
• CVE-2026-48209Reflected XSS in authenticated agent context7.1Jun 1, 2026
• CVE-2026-48210Possible information disclosure via External Interface5.7May 31, 2026
• CVE-2025-24387Missing CSRF protection4.8Mar 10, 2025
• CVE-2024-23794Agents are able to lock the ticket without the "Owner" permission5.2Jul 15, 2024
• CVE-2024-6540Information exlosure in external interface5.7Jul 15, 2024
• CVE-2024-23790Missing file type check in avatar picture upload3.5Jan 29, 2024
• CVE-2024-23791Unnecessary data is written to log if issues during indexing occurs4.9Jan 29, 2024
• CVE-2024-23792Insufficient access control5.3Jan 29, 2024
• CVE-2023-6254Password is send back to client8.1Nov 27, 2023