Description
Multiple cross-site scripting (XSS) vulnerabilities in index.pl in Open Ticket Request System (OTRS) 1.0.0 through 1.3.2 and 2.0.0 through 2.0.3 allow remote authenticated users to inject arbitrary web script or HTML via (1) hex-encoded values in the QueueID parameter and (2) Action parameters.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Moritz Naumann · textwebappscgi
https://www.exploit-db.com/exploits/26552
References (15)
Core 15
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23356
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23359
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15537/
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18887
Mailing List mailing-list
x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2005-November/039001.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/21067
Exploit, Patch, Vendor Advisory x_refsource_misc
http://moritz-naumann.com/adv/0007/otrsmulti/0007.txt
Patch, Vendor Advisory x_refsource_confirm
http://otrs.org/advisory/OSA-2005-01-en/
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=113272360804853&w=2
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2535
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2006/dsa-973
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18101
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2005_30_sr.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015262
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17685/
Scores
EPSS
0.0821
EPSS Percentile
92.2%
Details
Status
published
Products (6)
otrs/otrs
1.0.0
otrs/otrs
1.3.2
otrs/otrs
2.0.0
otrs/otrs
2.0.1
otrs/otrs
2.0.2
otrs/otrs
2.0.3
Published
Nov 29, 2005
Tracked Since
Feb 18, 2026