2 matches found
Redmine 跨站脚本漏洞
Redmine is an open source, web-based project management and defect tracking tool. A cross-site scripting vulnerability exists in Redmine. An attacker can exploit this vulnerability via the backurl field to conduct a cross-site scripting attack...
PT-2021-4608 · Redmine · Redmine
Name of the Vulnerable Software and Affected Versions: Redmine versions prior to 4.0.7 Redmine versions 4.1.x prior to 4.1.1 Description: The issue is related to a lack of protection for the web page structure, allowing a remote attacker to impact data integrity. The problem can be exploited via...