CVE-2008-7282

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2008-7282

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2008-7282.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2008-7282

Downstream

DEBIAN-CVE-2008-7282

Withdrawn

2026-01-27T04:09:31.708798Z

Published

2011-03-18T16:55:01Z

Modified

2026-01-27T04:09:31.708798Z

Summary

[none]

Details

Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm in Open Ticket Request System (OTRS) before 2.2.6, when the CustomerPanelOwnSelection and CustomerGroupSupport options are enabled, allows remote authenticated users to bypass intended access restrictions, and perform certain (1) list and (2) write operations on queues, via unspecified vectors.

References

http://bugs.otrs.org/show_bug.cgi?id=2696
http://source.otrs.org/viewvc.cgi/otrs/CHANGES?revision=1.1807

CVE-2008-7282

Affected packages