CVE-2012-4730
EPSS 0.18%request-tracker3.8 - several
發布日:2012/11/11修改日:2026/4/28
描述
Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8 allows remote authenticated users with ModifySelf or AdminUser privileges to inject arbitrary email headers and conduct phishing attacks or obtain sensitive information via unknown vectors.
受影響套件(2)
- Debian/request-tracker3.8from 0, < 3.8.8-7+squeeze6
- Debian/request-tracker4from 0, < 4.0.7-2