https://db.gcve.eu/sightings/feed 2026-05-02T11:38:34.114627+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/a66cf990-c51e-4502-8b0f-f4e917f5f15c/export 2026-05-02T11:38:34.459861+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "a66cf990-c51e-4502-8b0f-f4e917f5f15c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-FG8C-FXJ5-QP3X", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3163", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: GHSA-fg8c-fxj5-qp3x\n\ud83d\udd25 CVSS Score: 5.3 (CVSS_V3)\n\ud83d\udd39 Description: A vulnerability exists in OTRS and ((OTRS Community Edition)) that fail to set the HTTP response header X-Content-Type-Options to nosniff. An attacker could exploit this vulnerability by uploading or inserting content that would be treated as a different MIME type than intended. \n\nThis issue affects: \n\n * OTRS 7.0.X\n\n * OTRS 8.0.X\n * OTRS 2023.X\n * OTRS 2024.X\n\n * ((OTRS)) Community Edition: 6.0.x\n\nProducts based on the ((OTRS)) Community Edition also very likely to be affected\n\ud83d\udccf Published: 2025-01-27T06:30:26Z\n\ud83d\udccf Modified: 2025-01-27T06:30:26Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-43445\n2. https://otrs.com/release-notes/otrs-security-advisory-2025-01", "creation_timestamp": "2025-01-27T07:07:53.000000Z"} 2025-01-27T07:07:53+00:00