[Bug 1254111] New: CVE-2015-5475 rt: multiple XSS flaws
bugzilla at redhat.com
bugzilla at redhat.com
Mon Aug 17 07:52:04 UTC 2015
https://bugzilla.redhat.com/show_bug.cgi?id=1254111
Bug ID: 1254111
Summary: CVE-2015-5475 rt: multiple XSS flaws
Product: Security Response
Component: vulnerability
Keywords: Security
Severity: medium
Priority: medium
Assignee: security-response-team at redhat.com
Reporter: mprpic at redhat.com
CC: perl-devel at lists.fedoraproject.org,
rc040203 at freenet.de, tibbs at math.uh.edu
Common Vulnerabilities and Exposures assigned an identifier CVE-2015-5475 to
the following vulnerability:
Name: CVE-2015-5475
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5475
Assigned: 20150710
Reference: http://www.debian.org/security/2015/dsa-3335
Multiple cross-site scripting (XSS) vulnerabilities in Request Tracker
(RT) 4.x before 4.2.12 allow remote attackers to inject arbitrary web
script or HTML via vectors related to the (1) user and (2) group
rights management pages.
--
You are receiving this mail because:
You are on the CC list for the bug.
More information about the perl-devel
mailing list