CVE-2021-21442

Published: 2021-07-26T05:15Z

Last Modified: 2024-11-21T05:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In the project create screen it's possible to inject malicious JS code to the certain fields. The code might be executed in the Reporting screen. This issue affects: OTRS AG Time Accounting: 7.0.x versions prior to 7.0.19. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt