3 matches found
CVE-2012-2768
CVE-2012-2768: XSS in the topic administration page of rtfm (Best Practical RT) affecting 2.0.4–2.4.3. Debian advisory DSA-2535-1 notes fixes: 2.4.2-4+squeeze1 for squeeze, and 4.0.6-4 for wheezy/sid; update to a fixed version to mitigate. Affected products/versions are documented in connected so...
CVE-2003-0273
The CVE-2003-0273 entry describes a cross-site scripting (XSS) vulnerability in the web interface of Request Tracker (RT) versions 1.0 through 1.0.7, allowing remote attackers to execute script via message bodies. CVSS v2 base metrics indicate a Medium impact with Partial confidentiality, integri...
CVE-2006-2169
CVE-2006-2169 affects RT: Request Tracker 3.5.HEAD. The vulnerability is described as a leak of the installation path via the Rows parameter in Dist/Display.html, exposed in an error message. The provided documents confirm the affected software and the underlying cause (exposed path information) ...