CVE-2013-3371
Publication date 23 August 2013
Last updated 24 July 2024
Ubuntu priority
Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 3.8.3 through 3.8.16 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary web script or HTML via the filename of an attachment.
Status
Package | Ubuntu Release | Status |
---|---|---|
request-tracker3.8 | ||
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
request-tracker4 | ||
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty | Not in release | |