Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-6506

Опубликовано: 03 сент. 2015
Источник: debian

Описание

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
request-tracker4fixed4.2.11-2package
request-tracker4fixed4.2.8-3+deb8u1jessiepackage
request-tracker4not-affectedwheezypackage

Примечания

  • https://github.com/bestpractical/rt/commit/36a461947b00b105336adb4997d1c7767d8484c4

  • https://www.openwall.com/lists/oss-security/2015/08/13/8

Связанные уязвимости

ubuntu логотип

CVE-2015-6506

ubuntu
больше 10 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

nvd логотип

CVE-2015-6506

nvd
больше 10 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

github логотип

GHSA-cpvc-q5c7-mgxf

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.