Fabian Henneke

**Name of the Vulnerable Software and Affected Versions** OWASP json-sanitizer versions prior to 1.2.1 **Description** The issue allows an attacker who controls a substring of the input JSON, and controls another substring adjacent to a SCRIPT element in which the output is embedded as JavaScript, to potentially confuse the HTML parser as to where the SCRIPT element ends. This could cause non-script content to be interpreted as JavaScript, leading to a cross-site scripting (XSS) attack. **Recommendations** For OWASP json-sanitizer versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OTRS Community Edition versions prior to 5.0.41 OTRS Community Edition versions prior to 6.0.26 OTRS versions prior to 7.0.15 **Description** It is possible to craft Lost Password requests with wildcards in the `Token` value, allowing an attacker to retrieve valid tokens generated by users who have already requested new passwords. **Recommendations** For OTRS Community Edition versions prior to 5.0.41, update to a version later than 5.0.41. For OTRS Community Edition versions prior to 6.0.26, update to a version later than 6.0.26. For OTRS versions prior to 7.0.15, update to a version later than 7.0.15.

**Name of the Vulnerable Software and Affected Versions** OTRS Community Edition versions 5.0.41 and prior OTRS Community Edition versions 6.0.26 and prior OTRS versions 7.0.15 and prior **Description** An attacker with the ability to generate session IDs or password reset tokens may be able to predict other users' session IDs, password reset tokens, and automatically generated passwords. This issue can be exploited by an authenticated user to guess other session IDs, password reset tokens, or automated passwords. **Recommendations** For OTRS Community Edition versions 5.0.41 and prior, update to a version later than 5.0.41. For OTRS Community Edition versions 6.0.26 and prior, update to a version later than 6.0.26. For OTRS versions 7.0.15 and prior, update to a version later than 7.0.15.

**Name of the Vulnerable Software and Affected Versions** GONICUS GOsa versions before commit 56070d6289d47ba3f5918885954dcceb75606001 **Description** The issue concerns a Cross Site Scripting (XSS) vulnerability in the change password form, specifically in the html/password.php file. This vulnerability can be exploited by injecting arbitrary web script or HTML when a victim opens a specially crafted web page. **Recommendations** For versions before commit 56070d6289d47ba3f5918885954dcceb75606001, update to a version after commit 56070d6289d47ba3f5918885954dcceb75606001 to resolve the issue.