Zammad GmbH Zammad 2.3.0 and previous versions is affected by: Cross Site Scripting (XSS) - CWE-80. The impact is: Execute java script code on users browser. The component is: web app. The attack vector is: the victim must open a ticket. The fixed version is: 2.3.1, 2.2.2 and 2.1.3.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zammad zammad |
||
zammad zammad 2.3.0 |