|Category:||Web application abuses|
|Title:||OTRS Information Disclosure Vulnerability|
|Summary:||OTRS is prone to an information disclosure vulnerability.|
OTRS is prone to an information disclosure vulnerability.
An attacker who is logged into OTRS as an agent can request special URLs
from OTRS which can lead to the disclosure of any configuration information, including database credentials.
OTRS 3.3.x through 3.3.18
Upgrade to OTRS 3.3.19 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2017-15864|
|Copyright||This script is Copyright (C) 2017 Greenbone Networks GmbH|
|This is only one of 58768 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.