OTRS Index.PL Cross-Site Scripting Vulnerability

Bugtraq ID: 23862
Class: Input Validation Error
CVE: CVE-2007-2524
Remote: Yes
Local: No
Published: May 07 2007 12:00AM
Updated: Jun 25 2007 05:28PM
Credit: ciri is credited with the discovery of this vulnerability
Vulnerable: OTRS OTRS 2.0.4
+ Debian Linux 4.0 sparc
+ Debian Linux 4.0 s/390
+ Debian Linux 4.0 powerpc
+ Debian Linux 4.0 mipsel
+ Debian Linux 4.0 mips
+ Debian Linux 4.0 m68k
+ Debian Linux 4.0 ia-64
+ Debian Linux 4.0 ia-32
+ Debian Linux 4.0 hppa
+ Debian Linux 4.0 arm
+ Debian Linux 4.0 amd64
+ Debian Linux 4.0 alpha
+ Debian Linux 4.0
Not Vulnerable: OTRS OTRS 2.2


 

Privacy Statement
Copyright 2010, SecurityFocus