Your submission was sent successfully! Close

CVE-2019-17427

Published: 10 October 2019

In Redmine before 3.4.11 and 4.0.x before 4.0.4, persistent XSS exists due to textile formatting errors.

Priority

Medium

CVSS 3 base score: 6.1

Status

Package Release Status
redmine
Launchpad, Ubuntu, Debian
Upstream
Released (4.0.4-1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (3.4.4-1ubuntu0.1)
Ubuntu 16.04 ESM (Xenial Xerus)
Released (3.2.1-2ubuntu0.2)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist