Описание
Cross-site scripting (XSS) vulnerability in Redmine before 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| redmine | fixed | 1.3.2+dfsg1-1 | package | |
| redmine | end-of-life | squeeze | package |
Примечания
http://jvn.jp/en/jp/JVN93406632/
patch unclear: difficult to find the patch in 1.3.2 release
EPSS
Процентиль: 57%
0.00359
Низкий
Связанные уязвимости
ubuntu
почти 14 лет назад
Cross-site scripting (XSS) vulnerability in Redmine before 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
почти 14 лет назад
Cross-site scripting (XSS) vulnerability in Redmine before 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
github
почти 4 года назад
Cross-site scripting (XSS) vulnerability in Redmine before 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
EPSS
Процентиль: 57%
0.00359
Низкий