Otrs Survey
By the Year
In 2024 there have been 0 vulnerabilities in Otrs Survey . Last year Survey had 1 security vulnerability published. Right now, Survey is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 5.40 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 4.80 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Survey vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Otrs Survey Security Vulnerabilities
An improper input validation vulnerability in OTRS Survey modules
CVE-2023-38057
5.4 - Medium
- July 24, 2023
An improper input validation vulnerability in OTRS Survey modules allows any attacker with a link to a valid and unanswered survey request to inject javascript code in free text answers. This allows a cross site scripting attack while reading the replies as authenticated agent. This issue affects OTRS Survey module from 7.0.X before 7.0.32, from 8.0.X before 8.0.13 and ((OTRS)) Community Edition Survey module from 6.0.X through 6.0.22.
XSS
Survey administrator can craft a survey in such way that malicious code can be executed in the agent interface (i.e
CVE-2021-21434
4.8 - Medium
- February 08, 2021
Survey administrator can craft a survey in such way that malicious code can be executed in the agent interface (i.e. another agent who wants to make changes in the survey). This issue affects: OTRS AG Survey 6.0.x version 6.0.20 and prior versions; 7.0.x version 7.0.19 and prior versions.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Otrs Survey or by Otrs? Click the Watch button to subscribe.
