Lucene search
K

31 matches found

OSV
OSV
added 2022/07/14 11:51 a.m.5 views

CVE-2022-25803

Best Practical Request Tracker RT before 5.0.3 has an Open Redirect via a ticket search...

6.1CVSS6.8AI score0.00445EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2022/07/14 11:49 a.m.12 views

CVE-2022-25802

Best Practical Request Tracker RT before 4.4.6 and 5.x before 5.0.3 allows XSS via a crafted content type for an attachment...

6.1CVSS6AI score0.00604EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/06/23 12:0 a.m.43 views

Debian DLA-3057-1 : request-tracker4 - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3057 advisory. - Best Practical Request Tracker RT 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against...

7.5CVSS7.3AI score0.01707EPSS
Exploits0References4
OSV
OSV
added 2021/10/18 9:15 a.m.26 views

CVE-2021-38562

Best Practical Request Tracker RT 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm...

7.5CVSS6.2AI score0.01707EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/10/18 8:52 a.m.34 views

CVE-2021-38562

Best Practical Request Tracker RT 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm...

7.3AI score0.01707EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2021/10/18 8:52 a.m.183 views

CVE-2021-38562

Best Practical Request Tracker RT 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm...

7.5CVSS7.2AI score0.01707EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2021/10/18 8:52 a.m.12 views

CVE-2021-38562

Best Practical Request Tracker RT 4.2 before 4.2.17, 4.4 before 4.4.5, and 5.0 before 5.0.2 allows sensitive information disclosure via a timing attack against lib/RT/REST2/Middleware/Auth.pm...

7.5CVSS6.4AI score0.01707EPSS
Exploits0
NVD
NVD
added 2019/03/21 4:0 p.m.14 views

CVE-2018-18898

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing...

7.5CVSS7.4AI score0.02356EPSS
Exploits0References5
OSV
OSV
added 2019/03/21 4:0 p.m.20 views

CVE-2018-18898

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing...

7.5CVSS5.8AI score
Exploits0References5
Cvelist
Cvelist
added 2019/03/17 9:16 p.m.29 views

CVE-2018-18898

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing...

7.3AI score0.02356EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2019/03/17 9:16 p.m.35 views

CVE-2018-18898

The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing...

7.5CVSS7.4AI score0.02356EPSS
Exploits0
Rows per page
Query Builder