j0qq3r/CVE-2025-52204

Releases0

CVE-2025-52204: Reflected XSS / HTML Injection in Znuny OTRS

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-52204 ↗	Mar 23, 2026Monday, 23 March 2026, 20:16	6.1 MEDIUM	—
A Cross-Site Scripting (XSS) vulnerability exists in Znuny::ITSM 6.5.x in the customer.pl endpoint via the OTRSCustomerInterface parameter