CVE-2019-1010018
6.1MEDIUMZammad GmbH Zammad 2.3.0 and earlier is affected by: Cross Site Scripting (XSS) - CWE-80. The impact is: Execute java script code on users browser. The component is: web app. The attack vector is: the
Опубликовано: 7/16/2019Обновлено: 11/21/2024
Описание
Zammad GmbH Zammad 2.3.0 and earlier is affected by: Cross Site Scripting (XSS) - CWE-80. The impact is: Execute java script code on users browser. The component is: web app. The attack vector is: the victim must open a ticket. The fixed version is: 2.3.1, 2.2.2 and 2.1.3.
ИИ-АнализНа базе ИИ
Затронутые продукты
zammadzammad
zammadzammad
zammadzammad
2.3.0
Ссылки
- https://github.com/zammad/zammad/compare/5c983f6...1a9af7dPatchThird Party Advisory
- https://github.com/zammad/zammad/compare/ea50d0c...238784dPatchThird Party Advisory
- https://github.com/zammad/zammad/issues/1869Third Party Advisory
- https://github.com/zammad/zammad/compare/5c983f6...1a9af7dPatchThird Party Advisory
- https://github.com/zammad/zammad/compare/ea50d0c...238784dPatchThird Party Advisory
- https://github.com/zammad/zammad/issues/1869Third Party Advisory