2 matches found
Debian DSA-4191-1 : redmine - security update
Multiple vulnerabilities were discovered in Redmine, a project management web application. They could lead to remote code execution, information disclosure or cross-site scripting attacks. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
CVE-2017-15577
Redmine (community project management app) versions affected: 3.2.x up to 3.2.5 and 3.3.x up to 3.3.2 (CVE-2017-15577). The issue arises from how wiki links are rendered, allowing remote attackers to obtain sensitive information. The vulnerability is documented across multiple advisories, e.g., D...