CVE-2010-4071 (retired)

Priority
Description
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x
before 2.4.9, when RichText is enabled, allows remote attackers to inject
arbitrary web script or HTML via JavaScript in an HTML e-mail.
Notes
Package
Source: otrs2 (LP Ubuntu Debian)
Upstream:released (2.4.9)
More Information

Updated: 2019-10-09 07:33:47 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)