CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Redmine: >> Redmine >> 3.2.7 Security Vulnerabilities

CVE-2017-15569

In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, XSS exists in app/helpers/queries_helper.rb via a multi-value field with a crafted value that is mishandled during rendering of an issue list.

CVSS Score

6.1

EPSS Score

0.005

Published

2017-10-18

CVE-2017-15570

In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, XSS exists in app/views/timelog/_list.html.erb via crafted column data.

CVSS Score

6.1

EPSS Score

0.005

Published

2017-10-18

CVE-2017-15571

In Redmine before 3.2.8, 3.3.x before 3.3.5, and 3.4.x before 3.4.3, XSS exists in app/views/issues/_list.html.erb via crafted column data.

CVSS Score

6.1

EPSS Score

0.005

Published

2017-10-18

Prev

Page 3

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved