Security Advisory 2015-03: Vulnerability discovered in OTRS FAQ package

  • December 2015
December 01, 2015 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Please send information regarding vulnerabilities in OTRS to: security@otrs.org   PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> GPG Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22

Security Advisory 2015-02: Scheduler Process ID File Access

  • September 2015
September 29, 2015 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Please send information regarding vulnerabilities in OTRS to: security@otrs.org   PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> GPG Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22

Security Advisory 2015-01: Vulnerability in OTRS iPhoneHandle interface allows user with valid session privilege escalation

  • September 2015
September 29, 2015 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Please send information regarding vulnerabilities in OTRS to: security@otrs.org   PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> GPG Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22

Security Advisory 2014-06: Incomplete Access Control

  • December 2014
December 16, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a vulnerability security@otrs.org   PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> GPG Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B Recommended Resolution This vulnerability

Security Advisory 2014-05: Clickjacking issue

  • April 2014
April 01, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B Recommended Resolution This vulnerability is fixed

Security Advisory 2014-04: XSS Issue

  • April 2014
April 01, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2016-03-02] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B Recommended Resolution This vulnerability is fixed

Security Advisory 2014-03 – XSS Issue

  • February 2014
February 25, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a Vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2014-03-20] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B Recommended Resolution This vulnerability is fixed

Security Advisory 2014-01 – CSRF issue in customer web interface

  • January 2014
January 28, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a Vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2014-03-20] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B   Recommended Resolution This vulnerability is

Security Advisory 2014-02 – SQL injection issue

  • January 2014
January 28, 2014 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a Vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2014-03-20] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B Recommended Resolution This vulnerability is fixed

Security Advisory 2013-05 – Sql Injection + Xss Issue

  • July 2013
July 9, 2013 — Please read carefully and check if the version of your OTRS system is affected by this vulnerability. Report a Vulnerability security@otrs.org PGP Key pub 2048R/9C227C6B 2011-03-21 [expires at: 2014-03-20] uid OTRS Security Team <security@otrs.org> Fingerprint E330 4608 DA6E 34B7 1551 C244 7F9E 44E9 9C22 7C6B   Recommended Resolution This vulnerability is