Bugzilla – Bug 1000351
VUL-0: CVE-2016-5843: otrs: Multiple SQL injection vulnerabilities in the FAQ package
Last modified: 2016-11-02 21:22:32 UTC
Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters.
bugbot adjusting priority
affected Versions are not in use ...