Cross Site Scripting (XSS) Vulnerability in Zammad GmbH Zammad 2.3.0 and Earlier

Cross Site Scripting (XSS) Vulnerability in Zammad GmbH Zammad 2.3.0 and Earlier

CVE-2019-1010018 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Zammad GmbH Zammad 2.3.0 and earlier is affected by: Cross Site Scripting (XSS) - CWE-80. The impact is: Execute java script code on users browser. The component is: web app. The attack vector is: the victim must open a ticket. The fixed version is: 2.3.1, 2.2.2 and 2.1.3.

Learn more about our Web App Pen Testing.