|
Description
|
|
Two vulnerabilities have been reported in OTRS ITSM and the FAQ module for OTRS, which can be exploited by malicious users to bypass certain security restrictions and conduct script insertion attacks.
1) An error in the object linking mechanism can be exploited to view otherwise restricted ticket titles and objects or place and remove links to objects.
For more information:
SA52969
2) Certain unspecified input passed to changes, workorder items, or FAQ articles is not properly sanitised before being displayed to the user. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.
Successful exploitation of this vulnerability requires permission to write changes, workorder items, or FAQ articles.
The vulnerabilities are reported in the following products and versions.
* OTRS ITSM versions prior to 3.2.3, 3.1.8, and 3.0.7
* FAQ module for OTRS versions prior to 2.2.3, 2.1.4, and 2.0.8.
|
