[Bug 1254111] New: CVE-2015-5475 rt: multiple XSS flaws

Mon Aug 17 07:52:04 UTC 2015

https://bugzilla.redhat.com/show_bug.cgi?id=1254111

            Bug ID: 1254111
           Summary: CVE-2015-5475 rt: multiple XSS flaws
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: medium
          Priority: medium
          Assignee: security-response-team at redhat.com
          Reporter: mprpic at redhat.com
                CC: perl-devel at lists.fedoraproject.org,
                    rc040203 at freenet.de, tibbs at math.uh.edu

Common Vulnerabilities and Exposures assigned an identifier CVE-2015-5475 to
the following vulnerability:

Name: CVE-2015-5475
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5475
Assigned: 20150710
Reference: http://www.debian.org/security/2015/dsa-3335

Multiple cross-site scripting (XSS) vulnerabilities in Request Tracker
(RT) 4.x before 4.2.12 allow remote attackers to inject arbitrary web
script or HTML via vectors related to the (1) user and (2) group
rights management pages.

-- 
You are receiving this mail because:
You are on the CC list for the bug.