CVE-2018-17883

EPSS 0.91% · P76 Updated Feb 07, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-17883

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in Open Ticket Request System (OTRS) 6.0.x before 6.0.12. An attacker could send an e-mail message with a malicious link to an OTRS system or an agent. If a logged-in agent opens this link, it could cause the execution of JavaScript in the context of OTRS.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Open Ticket Request System 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OTRS Open Ticket Request System（OTRS）是德国OTRS公司的一套开源缺陷跟踪管理系统软件。该软件将电话，邮件等各种渠道提交进来的服务请求归类为不同的队列、服务级别，服务人员通过OTRS系统来跟踪和回复客户。 Open Ticket Request System (OTRS) 6.0.12之前的6.0.x版本存在安全漏洞，该漏洞源于攻击者可以向OTRS系统或代理发送带有恶意链接的电子邮件，如果登录代理打开此链接，可能会导致在OTRS上下文中执行JavaScript。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-17883

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-17883

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-04-15 · 35 CVEs total

CVE-2023-2107	6.3 MEDIUM	IBOS del&op=recycle sql injection
CVE-2015-10101	3.5 LOW	Google Analytics Top Content Widget Plugin class-tgm-plugin-activation.php cross site scri
CVE-2020-29007		LilyPond 代码注入漏洞
CVE-2022-43698		Open-Xchange OX App Suite 代码问题漏洞
CVE-2020-17354		LilyPond 安全漏洞
CVE-2021-39295		Intel Integrated Baseboard Management Controller 资源管理错误漏洞
CVE-2021-34337		GNU Mailman 安全漏洞
CVE-2021-30153		MediaWiki 信息泄露漏洞
CVE-2022-47522		SonicWall SonicWave Secure Wireless Access Points 安全漏洞
CVE-2022-45030		rConfig SQL注入漏洞
CVE-2022-43699		Open-Xchange OX App Suite 代码问题漏洞
CVE-2023-24607		Qt 6 安全漏洞
CVE-2023-22670		Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-22669		Siemens Solid Edge 缓冲区错误漏洞
CVE-2022-48178		X2Engine X2CRM 跨站脚本漏洞
CVE-2022-48177		X2Engine X2CRM 跨站脚本漏洞
CVE-2022-43696		Open-Xchange OX App Suite 跨站脚本漏洞
CVE-2022-43697		Open-Xchange OX App Suite 跨站脚本漏洞
CVE-2021-43612		lldpd 缓冲区错误漏洞
CVE-2018-15472		GitLab 安全漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-17883

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-17883

I. Basic Information for CVE-2018-17883

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-17883

III. Intelligence Information for CVE-2018-17883

Same Patch Batch · n/a · 2023-04-15 · 35 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-17883

Leave a comment