{"id":"CVE-2011-1518","details":"Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.4.x before 2.4.10 and 3.x before 3.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.","modified":"2026-04-10T03:41:43.123360Z","published":"2011-04-18T18:55:02Z","references":[{"type":"ADVISORY","url":"http://otrs.org/advisory/OSA-2011-01-en/"},{"type":"ADVISORY","url":"http://secunia.com/advisories/44029"},{"type":"ADVISORY","url":"http://secunia.com/advisories/44479"},{"type":"ADVISORY","url":"http://www.debian.org/security/2011/dsa-2231"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2011/1186"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"},{"type":"WEB","url":"http://www.osvdb.org/71790"},{"type":"WEB","url":"http://www.securityfocus.com/bid/47323"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/66698"}],"schema_version":"1.7.5"}