CVE-2015-8346

2016-04-12T14:59:00
ID CVE-2015-8346
Type cve
Reporter cve@mitre.org
Modified 2016-04-20T21:08:00

Description

app/views/timelog/_form.html.erb in Redmine before 2.6.8, 3.0.x before 3.0.6, and 3.1.x before 3.1.2 allows remote attackers to obtain sensitive information about subjects of issues by viewing the time logging form.