Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2012-0327

Cross-site scripting (XSS) vulnerability in Redmine before 1.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Related bugs and status

CVE-2012-0327 (Candidate) is related to these bugs:

Bug #959187: Mass assignment security vulnerability in Redmine

		In	Importance	Status
959187	Mass assignment security vulnerability in Redmine	redmine (Ubuntu)	Undecided	Fix Released
959187	Mass assignment security vulnerability in Redmine	redmine (Ubuntu Lucid)	Undecided	Won't Fix
959187	Mass assignment security vulnerability in Redmine	redmine (Ubuntu Precise)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.redmine.org...
JVN: JVN#93406632
JVNDB: JVNDB-2012-000025
BID: 52447