Lucene search
+L

8 matches found

Circl
Circl
added 2025/04/28 9:40 a.m.7 views

CVE-2025-4011

creationtimestamp| type| source ---|---|--- 2025-04-28 09:40:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lnuhxixa4c2v 2025-04-28 13:13:38+00:00| seen| https://t.me/cvedetector/23901...

5.1CVSS5.3AI score0.0028EPSS
Exploits0References2
NVD
NVD
added 2025/04/28 9:15 a.m.31 views

CVE-2025-4011

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

5.1CVSS0.0028EPSS
Exploits0References6
OSV
OSV
added 2025/04/28 9:15 a.m.6 views

CVE-2025-4011

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

3.5CVSS6.3AI score
Exploits0References6
Debian CVE
Debian CVE
added 2025/04/28 8:0 a.m.12 views

CVE-2025-4011

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

5.1CVSS3.1AI score0.0028EPSS
Exploits0
Cvelist
Cvelist
added 2025/04/28 8:0 a.m.27 views

CVE-2025-4011 Redmine Custom Query cross site scripting

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

5.1CVSS0.0028EPSS
Exploits0References6
CVE
CVE
added 2025/04/28 8:0 a.m.74 views

CVE-2025-4011

CVE-2025-4011 affects Redmine versions 6.0.0–6.0.3, where the unknown code path in the Custom Query Handler improperly handles the argument named “Name”, enabling remote Cross‑Site Scripting (XSS) . The impact is limited to client-side execution and depends on user interaction as described by the...

5.1CVSS3.8AI score0.0028EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/04/28 8:0 a.m.10 views

CVE-2025-4011 Redmine Custom Query cross site scripting

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

5.1CVSS3.8AI score0.0028EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/04/28 12:0 a.m.13 views

CVE-2025-4011

A vulnerability has been found in Redmine 6.0.0/6.0.1/6.0.2/6.0.3 and classified as problematic. This vulnerability affects unknown code of the component Custom Query Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. Upgrading to...

5.1CVSS4.1AI score0.0028EPSS
Exploits0References7
Rows per page
Query Builder