Known Vulnerabilities for Faq by Otrs

Listed below are 4 of the newest known vulnerabilities associated with "Faq" by "Otrs".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-21438 json	Agents are able to see linked FAQ articles without permissions (defined in FAQ Category). This issue affects: FAQ version 6.0...	4.3 - MEDIUM	2021-03-22	2021-03-25
CVE-2016-5843 json	Multiple SQL injection vulnerabilities in the FAQ package 2.x before 2.3.6, 4.x before 4.0.5, and 5.x before 5.0.5 in Open Ti...	9.4 - CRITICAL	2016-09-17	2016-11-28
CVE-2013-2637 json	A Cross-Site Scripting (XSS) Vulnerability exists in OTRS ITSM prior to 3.2.4, 3.1.8, and 3.0.7 and FAQ prior to 2.1.4 and 2....	6.1 - MEDIUM	2020-02-12	2020-02-18
CVE-2013-2625 json	An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, a...	6.5 - MEDIUM	2019-11-27	2020-08-18

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Otrs	Faq	6.0.9
Application	Otrs	Faq	6.0.8
Application	Otrs	Faq	6.0.7
Application	Otrs	Faq	6.0.6
Application	Otrs	Faq	6.0.5
Application	Otrs	Faq	6.0.4
Application	Otrs	Faq	6.0.3
Application	Otrs	Faq	6.0.29
Application	Otrs	Faq	6.0.28
Application	Otrs	Faq	6.0.27
Application	Otrs	Faq	6.0.26
Application	Otrs	Faq	6.0.25
Application	Otrs	Faq	6.0.24
Application	Otrs	Faq	6.0.23
Application	Otrs	Faq	6.0.22
Application	Otrs	Faq	6.0.21
Application	Otrs	Faq	6.0.20
Application	Otrs	Faq	6.0.2
Application	Otrs	Faq	6.0.19
Application	Otrs	Faq	6.0.18

Results limited to 20 most recent known configurations