We are excited to announce the release of OTRS Community Edition 6.0.41, which includes an important security fix, along with new features and key improvements.

Essential Security Update

This release addresses a significant XSS vulnerability via HTTP Request Splitting in the web installation script, as documented in security advisory OTRECE-SA-2024-01. We extend our gratitude to XBOW Security for identifying and reporting this issue. All users are strongly urged to upgrade to ensure the security of their systems.

Key Enhancements

Apart from the security update, version 6.0.41 introduces several enhancements and bug fixes, including updates to the refreshed customer user UI, fixes for the rich text editor, and improvements to handling of e-mail messages.

System and Database Compatibility

This release introduces compatibility with MySQL 8.0+ as the application's database. Additionally, the Shell Installer has been updated to support most recent Linux distributions.

We highly recommend upgrading to 6.0.41 to benefit from these important security fixes and improvements. Download the latest version, and check the changelog for a complete list of changes.

Thank you for choosing OTRS Community Edition as your open-source ticketing solution!