关于 CVE-2010-0438 的漏洞信息

1. 漏洞描述
From NVD
Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
From 神龙GPT (AIGC)
"在OTRS-Core 2.1.x 2.1.9之前,Open Ticket Request System (OTRS) 2.2.x 2.2.9之前,2.3.x 2.3.5之前和2.4.x 2.4.7之前Kernel/System/Ticket.pm文件中存在多个SQL注入漏洞,允许远程授权用户通过未指定的目标执行任意的SQL命令。"
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference