Candidate: CVE-2014-1695
PublicDate: 2014-03-01 00:01:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1695
 https://www.otrs.com/security-advisory-2014-03-xss-issue
 http://secunia.com/advisories/57018
Description:
 Cross-site scripting (XSS) vulnerability in Open Ticket Request System
 (OTRS) 3.1.x before 3.1.20, 3.2.x before 3.2.15, and 3.3.x before 3.3.5
 allows remote attackers to inject arbitrary web script or HTML via a
 crafted HTML email.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_otrs2:
upstream_otrs2: released (3.3.5-1)
lucid_otrs2: ignored (reached end-of-life)
precise_otrs2: ignored (reached end-of-life)
precise/esm_otrs2: DNE (precise was needs-triage)
quantal_otrs2: ignored (reached end-of-life)
saucy_otrs2: ignored (reached end-of-life)
trusty_otrs2: not-affected (3.3.5-1)
trusty/esm_otrs2: DNE (trusty was not-affected [3.3.5-1])
utopic_otrs2: ignored (reached end-of-life)
vivid_otrs2: ignored (reached end-of-life)
vivid/stable-phone-overlay_otrs2: DNE
vivid/ubuntu-core_otrs2: DNE
wily_otrs2: ignored (reached end-of-life)
xenial_otrs2: not-affected (3.3.5-1)
yakkety_otrs2: ignored (reached end-of-life)
zesty_otrs2: ignored (reached end-of-life)
artful_otrs2: ignored (reached end-of-life)
bionic_otrs2: not-affected (3.3.5-1)
devel_otrs2: not-affected (3.3.5-1)