{"vulnerability": "cve-2024-6540", "sightings": [{"uuid": "ad4cea5b-e053-4a14-b872-932a8406c102", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-6540", "type": "seen", "source": "https://t.me/cvedetector/853", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-6540 - Improper filtering of fields when using the export\", \n  \"Content\": \"CVE ID : CVE-2024-6540 \nPublished : July 15, 2024, 8:15 a.m. | 43\u00a0minutes ago \nDescription : Improper filtering of fields when using the export function in the ticket overview of the external interface could allow an authorized user to download a list of tickets containing information about tickets of other customers. The problem only occurs if the TicketSearchLegacyEngine has been disabled by the administrator.  \nThis issue affects OTRS: 8.0.X, 2023.X, from 2024.X through 2024.4.x \nSeverity: 5.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-15T10:59:34.000000Z"}]}