CVE-2012-2768
EPSS 0.36%rtfm - cross-site scripting
Published: 8/15/2012Modified: 4/28/2026
Also known as:DEBIAN-CVE-2012-2768
Description
Multiple cross-site scripting (XSS) vulnerabilities in the topic administration page in the RTFM extension 2.0.4 through 2.4.3 for Best Practical Solutions RT allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected packages (2)
- Debian/request-tracker4from 0, < 4.0.6-1
- Debian/rtfmfrom 0, < 2.4.2-4+squeeze1