Approved changes feed: RSS · Atom
cpe:2.3:a:otrs:survey:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Otrs (265741d9-907d-5d62-a717-73ae1ea6326f) |
|---|---|
| Product | Survey (a308bbc2-7f3f-5c8b-a7ce-9ea755e0d428) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/otrs/survey |
purl2cpe | 2026-06-01 10:13:48.021645 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-21434 |
vulnerable | 2026-06-03 14:43:44.743484 |
XSS in Survey Module
LOW (3.5)
Survey administrator can craft a survey in such way that malicious code can be executed in the agent interface (i.e. another agent who wants to make changes in the survey). This issue affects: OTRS AG Survey 6.0.x version 6.0.20 and prior versions; 7.0.x version 7.0.19 and prior versions.
Published: 2021-02-08T10:55:19.064Z
Updated: 2024-09-17T03:54:55.677Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.