Vulnerabilities > Zammad

DATE CVE VULNERABILITY TITLE RISK
2020-03-05 CVE-2020-10102 Information Exposure Through Discrepancy vulnerability in Zammad
An issue was discovered in Zammad 3.0 through 3.2.
network
zammad CWE-203
3.5
2020-03-05 CVE-2020-10101 Improper Input Validation vulnerability in Zammad
An issue was discovered in Zammad 3.0 through 3.2.
network
low complexity
zammad CWE-20
5.0
2020-03-05 CVE-2020-10100 Information Exposure vulnerability in Zammad
An issue was discovered in Zammad 3.0 through 3.2.
network
low complexity
zammad CWE-200
4.0
2020-03-05 CVE-2020-10099 Cross-site Scripting vulnerability in Zammad
An XSS issue was discovered in Zammad 3.0 through 3.2.
network
zammad CWE-79
3.5
2020-03-05 CVE-2020-10098 Cross-site Scripting vulnerability in Zammad
An XSS issue was discovered in Zammad 3.0 through 3.2.
network
zammad CWE-79
3.5
2020-03-05 CVE-2020-10097 Information Exposure Through an Error Message vulnerability in Zammad
An issue was discovered in Zammad 3.0 through 3.2.
network
low complexity
zammad CWE-209
5.0
2020-03-05 CVE-2020-10096 Information Exposure vulnerability in Zammad
An issue was discovered in Zammad 3.0 through 3.2.
network
low complexity
zammad CWE-200
5.0
2019-07-16 CVE-2019-1010018 Cross-site Scripting vulnerability in Zammad
Zammad GmbH Zammad 2.3.0 and earlier is affected by: Cross Site Scripting (XSS) - CWE-80.
network
zammad CWE-79
4.3
2018-04-05 CVE-2018-1000154 Cross-site Scripting vulnerability in Zammad
Zammad GmbH Zammad version 2.3.0 and earlier contains a Improper Neutralization of Script-Related HTML Tags in a Web Page (CWE-80) vulnerability in the subject of emails which are not html quoted in certain cases.
network
zammad CWE-79
4.3
2017-03-13 CVE-2017-6081 Cross-Site Request Forgery (CSRF) vulnerability in Zammad
A CSRF issue was discovered in Zammad before 1.0.4, 1.1.x before 1.1.3, and 1.2.x before 1.2.1.
network
zammad CWE-352
6.8