Search Results (Refine Search)
- CPE Product Version: cpe:/a:otrs:faq:2.0.8
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2016-5843 |
Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ticket Request System (OTRS) allow remote attackers to execute arbitrary SQL commands via crafted search parameters. Published: September 16, 2016; 10:59:00 PM -0400 |
V3.0: 9.4 CRITICAL V2.0: 9.0 HIGH |