Cross-Site Scripting Vulnerabilities in RTFM Extension by Best Practical Solutions
CVE-2012-2768

Currently unrated

Key Information:

Vendor: Best Practical Solutions
Status: Request Tracker
Vendor: CVE Published:; 15 August 2012

🔔 Create Best Practical Solutions Vulnerability Alert

What is CVE-2012-2768?

The RTFM extension for Best Practical Solutions' RT application contains multiple cross-site scripting (XSS) vulnerabilities due to improper input validation on the topic administration page. This can allow remote attackers to inject arbitrary web scripts or HTML through unspecified vectors, potentially compromising sensitive data and the integrity of the web application. It is essential for users of affected versions to apply security updates to mitigate these risks.

References

http://www.securityfocus.com/bid/54689

vdb-entryx_refsource_BID

http://secunia.com/advisories/50440

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/50024

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 15, 2012
Vulnerability Reserved
May 18, 2012

CVE-2012-2768 Data

JSON