NVD

Id
40862  
Name
CVE-2013-5587  
Description
Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x before 4.0.13, when MakeClicky is configured, allows remote attackers to inject arbitrary web script or HTML via a URL in a ticket. NOTE: this issue has been SPLIT from CVE-2013-3371 due to different affected versions.  
Reject
 
CVSS Version
2  
CVSS Score
2.6  
Severity
Low  
CVSS Base Score
2.6  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-18  
Published
2013-08-23  
Modified Date
2013-08-26  
Seq
2013-5587  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
206438 40862 CVE-2013-5587 [rt-announce] 20130522 Security vulnerabilities in RT  View
206439 40862 CVE-2013-5587 [rt-announce] 20130522 RT 4.0.13 released  View
206440 40862 CVE-2013-5587 [rt-announce] 20130522 RT 3.8.17 released  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
22305 JVNDB-2013-003880 Request Tracker におけるクロスサイトスクリプティングの脆弱性 Request Tracker (RT) には、MakeClicky が設定されている場合、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2013-5587 65529 CVE-2013-5587 40862 2.6 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003880.html 2013-05-22 2013-08-27 View