First published: Mon Mar 09 2015(Updated: )
RT (aka Request Tracker) before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to hijack sessions via an RSS feed URL.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Fedoraproject Fedora | =21 | |
Fedoraproject Fedora | =22 | |
Bestpractical Request Tracker | <=4.0.22 | |
Bestpractical Request Tracker | =4.2.0 | |
Bestpractical Request Tracker | =4.2.1 | |
Bestpractical Request Tracker | =4.2.2 | |
Bestpractical Request Tracker | =4.2.3 | |
Bestpractical Request Tracker | =4.2.4 | |
Bestpractical Request Tracker | =4.2.5 | |
Bestpractical Request Tracker | =4.2.6 | |
Bestpractical Request Tracker | =4.2.7 | |
Bestpractical Request Tracker | =4.2.8 | |
Bestpractical Request Tracker | =4.2.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.