CVE-2016-9139

Source
https://nvd.nist.gov/vuln/detail/CVE-2016-9139
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2016-9139.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2016-9139
Downstream
Related
Published
2017-02-17T02:59:13Z
Modified
2025-04-20T01:37:25Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.3.x before 3.3.16, 4.0.x before 4.0.19, and 5.0.x before 5.0.14 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment.

References

Affected packages