CVE-2025-24388 – “OTRS Parameter Injection Vulnerability”

June 16, 2025

CVE ID : CVE-2025-24388

Published : June 16, 2025, 12:15 p.m. | 2 hours, 5 minutes ago

Description : A vulnerability in the OTRS Admin Interface and Agent Interface (versions before OTRS 8) allow parameter injection due to for an autheniticated agent or admin user.

This issue affects:

* OTRS 7.0.X

* OTRS 8.0.X
* OTRS 2023.X
* OTRS 2024.X
* OTRS 2025.X

* ((OTRS)) Community Edition: 6.0.x

Products based on the ((OTRS)) Community Edition also very likely to be affected

Severity: 3.8 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6121 – D-Link DIR-632 HTTP POST Request Handler Stack-Based Buffer Overflow

Next Article CVE-2025-6119 – Open Asset Import Library Assimp Use After Free Vulnerability

What I Wish Someone Told Me When I Was Getting Into ARIA

SD Times 100

Managing the growing risk profile of agentic AI and MCP in the enterprise

How To Prevent WordPress SQL Injection Attacks

Funny Windows 11 bug brings back classic Windows boot sound from 20 years ago

Windows 11 news and updates in June: Microsoft’s AI agent in Settings makes adjusting your PC easier than ever

uBlock Origin ships to Edge for Android as Google kills it on Chrome

Windows Hello face unlock no longer works in the dark, and Microsoft says it’s not a bug

Community News: Latest PECL Releases (06.17.2025)

Community News: Latest PECL Releases (06.17.2025)

Stream-Omni: Simultaneous Multimodal Interactions with Large Language-Vision-Speech Model

How Inclusive Design Leading and Creating Solutions for Universal Design

Funny Windows 11 bug brings back classic Windows boot sound from 20 years ago

Funny Windows 11 bug brings back classic Windows boot sound from 20 years ago

Windows 11 news and updates in June: Microsoft’s AI agent in Settings makes adjusting your PC easier than ever

uBlock Origin ships to Edge for Android as Google kills it on Chrome

CVE-2025-24388 – “OTRS Parameter Injection Vulnerability”

TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert

Hard-Coded ‘b’ Password in Sitecore XP Sparks Major RCE Risk in Enterprise Deployments

Mastering Carousels with GSAP: From Basics to Advanced Animation

CVE-2025-4011 – Redmine Custom Query Handler Cross Site Scripting Vulnerability

Top 15 Kubernetes Interview Questions for Beginners

Lit.js: Building Fast, Lightweight, and Scalable Web Components

Alibaba Qwen Team Just Released Qwen3: The Latest Generation of Large Language Models in Qwen Series, Offering a Comprehensive Suite of Dense and Mixture-of-Experts (MoE) Models

LLMs Struggle with Real Conversations: Microsoft and Salesforce Researchers Reveal a 39% Performance Drop in Multi-Turn Underspecified Tasks

AI achieves silver-medal standard solving International Mathematical Olympiad problems

GraphQL API Testing: Strategies and Tools for Testers

CVE-2025-24388 – “OTRS Parameter Injection Vulnerability”

Related Posts