 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2010-0438 |
| Description: | Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.902016 1.3.6.1.4.1.25623.1.0.66836 1.3.6.1.4.1.25623.1.0.66815 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-0438 BugTraq ID: 38146 http://www.securityfocus.com/bid/38146 http://www.osvdb.org/62181 http://secunia.com/advisories/38507 http://secunia.com/advisories/38544 SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html |