An issue was discovered in Zammad before 6.2.0. An attacker can trigger phishing links in generated notification emails via a crafted first or last name.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-12-10
An issue was discovered in Zammad before 6.2.0. When listing tickets linked to a knowledge base answer, or knowledge base answers of a ticket, a user could see entries for which they lack permissions.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-12-10
Page 2