| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | OTRS <= 2.0.x XSS/XSRF |
| From: | ciri@virtuax.be |
| Date: | 7 May 2007 19:49:50 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
OTRS is vulnerable to a XSS/XSRF. It is possible to inject code into the Subaction parameter. Authentication is required to reach the page, but a non-authenticated user will be asked to login and the attack will still be carried out. Link: http://www.virtuax.be/?page=library&id=35&type=Exploits |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL Injections, technocrat |
|---|---|
| Next by Date: | Updated: webMethods Security Advisory: Glue console directory traversal vulnerability, Jeremy Epstein |
| Previous by Thread: | Re: NukeSentinel Bypass SQL Injection & Nuke Evolution <= 2.0.3 SQL Injections, technocrat |
| Next by Thread: | Updated: webMethods Security Advisory: Glue console directory traversal vulnerability, Jeremy Epstein |
| Indexes: | [Date] [Thread] [Top] [All Lists] |