CVE-2015-6506

Опубликовано: 03 сент. 2015

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

Релиз	Статус	Примечание
devel	DNE
esm-infra-legacy/trusty	DNE
precise	not-affected
trusty	DNE
trusty/esm	DNE
upstream	needs-triage
vivid	DNE

Показывать по

Релиз	Статус	Примечание
devel	not-affected	4.2.11-2
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [4.0.19-1]]
precise	not-affected
trusty	not-affected	4.0.19-1
trusty/esm	DNE	trusty was not-affected [4.0.19-1]
upstream	released	4.2.11-2
vivid	released	4.2.8-3+deb8u1build0.15.04.1

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2015-6506

nvd

больше 10 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

CVE-2015-6506

debian

больше 10 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface ...

GHSA-cpvc-q5c7-mgxf

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the cryptography interface in Request Tracker (RT) before 4.2.12 allows remote attackers to inject arbitrary web script or HTML via a crafted public key.

4.3 Medium

CVSS2

CVE-2015-6506

Описание

Пакет request-tracker3.8

Пакет request-tracker4

Ссылки на источники

Связанные уязвимости