Back to search
CVE-2009-3892
Published: Nov 17, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in Best Practical Solutions RT 3.6.x before 3.6.9, 3.8.x before 3.8.5, and other 3.4.6 through 3.8.4 versions allows remote attackers to inject arbitrary web script or HTML via certain Custom Fields.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20091116 Re: CVE Id request: request-tracker
mailing-list
x_refsource_MLIST
[rt-announce] 20090914 RT 3.8.5 Released
mailing-list
x_refsource_MLIST
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=546778
x_refsource_CONFIRM
[rt-announce] 20090914 RT 3.6.9 Released
mailing-list
x_refsource_MLIST
[oss-security] 20091115 CVE Id request: request-tracker
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now