Candidate: CVE-2010-4762
PublicDate: 2011-03-18 16:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4762
Description:
 Cross-site scripting (XSS) vulnerability in the rich-text-editor component
 in Open Ticket Request System (OTRS) before 3.0.0-beta2 allows remote
 authenticated users to inject arbitrary web script or HTML by using the
 "source code" feature in the customer interface.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_otrs2:
upstream_otrs2: released (3.0.0)
dapper_otrs2: DNE
hardy_otrs2: ignored (reached end-of-life)
karmic_otrs2: ignored (reached end-of-life)
lucid_otrs2: ignored (reached end-of-life)
maverick_otrs2: ignored (reached end-of-life)
natty_otrs2: ignored (reached end-of-life)
oneiric_otrs2: not-affected (3.0.8+dfsg1-1)
precise_otrs2: not-affected (3.0.8+dfsg1-1)
quantal_otrs2: not-affected (3.0.8+dfsg1-1)
raring_otrs2: not-affected (3.0.8+dfsg1-1)
saucy_otrs2: not-affected (3.0.8+dfsg1-1)
devel_otrs2: not-affected (3.0.8+dfsg1-1)