CVE-2011-1689

Published: 22 April 2011

Multiple cross-site scripting (XSS) vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Priority

Low

Status

Package Release Status
request-tracker3.6
Launchpad, Ubuntu, Debian
Upstream
Released (3.6.11)
request-tracker3.8
Launchpad, Ubuntu, Debian
Upstream
Released (3.8.10)