CVE-2003-0273

UNRATEDJSON export Create alert

Description

Cross-site scripting (XSS) vulnerability in the web interface for Request Tracker (RT) 1.0 through 1.0.7 allows remote attackers to execute script via message bodies.

Affected products

Best Practical Solutions / Request Tracker1.0.0 – 1.0.0
Best Practical Solutions / Request Tracker1.0.1 – 1.0.1
Best Practical Solutions / Request Tracker1.0.2 – 1.0.2
Best Practical Solutions / Request Tracker1.0.3 – 1.0.3
Best Practical Solutions / Request Tracker1.0.4 – 1.0.4
Best Practical Solutions / Request Tracker1.0.5 – 1.0.5
Best Practical Solutions / Request Tracker1.0.6 – 1.0.6
Best Practical Solutions / Request Tracker1.0.7 – 1.0.7

References

MAILING_LISThttp://lists.fsck.com/pipermail/rt-announce/2003-May/000071.html
MAILING_LISThttp://marc.info/?l=bugtraq&m=105240947225275&w=2