oss-sec mailing list archives
Re: [Ticket#2014012942020471] CVE Request: otrs: CSRF issue in customer web interface
From: Jens Bothe via OTRS Security Team <security () otrs org>
Date: Wed, 29 Jan 2014 10:14:48 +0000
Hi, 2014-01-29 10:58 (+1) - Salvatore Bonaccorso wrote: A CSRF issue in otrs was announced in [1]. Is a CVE for this issue already assigned? For the OSA-2014-01 we don't have a CVE, just the OTRS Bug report. Regards, Jens Bothe -- OTRS AG Norsk-Data-Straße 1 61352 Bad Homburg T: +49 (0) 6172 681988 0 F: +49 (0) 9421 56818 18 E: [1]sales () otrs com I: [2]http://www.otrs.com/ Business location: Bad Homburg, Country Court: Bad Homburg, HRB 10751, VAT ID: DE256610065 Chairman: Burchard Steinbild, Managing Board: André Mindermann (CEO), Christopher Kuhn, Sabine Riedel Easier Planning and Improved Overviews - Enhance your Service Management with OTRS 3.3 - [3]Download and Test the Stable Release Now! [1] mailto:sales () otrs com [2] http://www.otrs.com/ [3] https://www.otrs.com/new-in-otrs-3-3/
Attachment:
pgp_sign.asc
Description:
Current thread:
- CVE Request: otrs: CSRF issue in customer web interface Salvatore Bonaccorso (Jan 29)
- Re: [Ticket#2014012942020471] CVE Request: otrs: CSRF issue in customer web interface Jens Bothe via OTRS Security Team (Jan 29)
- Re: CVE Request: otrs: CSRF issue in customer web interface cve-assign (Jan 29)