Lucene search
MitreCVELIST:CVE-2013-3371HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-3371
2022-10-0316:14:46
mitre
www.cve.org
cross-site scripting
request tracker
remote attackers
web script injection
html injection
attachment filename
Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 3.8.3 through 3.8.16 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary web script or HTML via the filename of an attachment.
References
lists.bestpractical.com/pipermail/rt-announce/2013-May/000226.html
lists.bestpractical.com/pipermail/rt-announce/2013-May/000227.html
lists.bestpractical.com/pipermail/rt-announce/2013-May/000228.html
secunia.com/advisories/53505
secunia.com/advisories/53522
www.debian.org/security/2012/dsa-2670
www.osvdb.org/93608
Related
cve
cve
CVE-2013-3371
2022-10-03 16:14:46
CVE-2013-5587
2022-10-03 16:14:55
debiancve
debiancve
CVE-2013-3371
2022-10-03 16:14:46
CVE-2013-5587
2022-10-03 16:14:55
prion
prion
Cross site scripting
2013-08-23 16:55:00
Cross site scripting
2013-08-23 16:55:00
nvd
nvd
CVE-2013-3371
2013-08-23 16:55:07
CVE-2013-5587
2013-08-23 16:55:07
ubuntucve
ubuntucve
CVE-2013-5587
2013-08-23 00:00:00
CVE-2013-3371
2013-08-23 00:00:00
cvelist
cvelist
CVE-2013-5587
2022-10-03 16:14:55
openvas
openvas
Debian: Security Advisory (DSA-2670-1)
2013-05-21 00:00:00
debian
debian
[SECURITY] [DSA 2670-1] request-tracker3.8 security update
2013-05-22 19:11:30
[SECURITY] [DSA 2670-1] request-tracker3.8 security update
2013-05-22 19:11:30
[SECURITY] [DSA 2671-1] request-tracker4 security update
2013-05-22 19:45:55
nessus
nessus
Debian DSA-2670-1 : request-tracker3.8 - several vulnerabilities
2013-05-23 00:00:00
RT: Request Tracker < 3.8.17 / 4.0.13 Multiple Vulnerabilities
2013-05-24 00:00:00
osv
osv
request-tracker3.8 - several
2013-05-22 00:00:00
request-tracker4 - several
2013-05-22 00:00:00
freebsd
freebsd
RT -- multiple vulnerabilities
2013-05-22 00:00:00
mageia
mageia
Updated rt/perl-Encode packages fix security vulnerability
2017-09-03 17:31:33