PT-2021-4587 · Redmine · Redmine
Name of the Vulnerable Software and Affected Versions: Redmine versions 4.0.0 through 4.0.8 Redmine versions 4.1.0 through 4.1.2 Description: The issue is related to a timing difference in string comparison operations within SysController and MailHandlerController, allowing an attacker to learn...