Candidate: CVE-2012-2768
PublicDate: 2012-08-15 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2768
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the topic
 administration page in the RTFM extension 2.0.4 through 2.4.3 for Best
 Practical Solutions RT allow remote attackers to inject arbitrary web
 script or HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=683290
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_rt3.8-rtfm:
upstream_rt3.8-rtfm: needs-triage
hardy_rt3.8-rtfm: DNE
lucid_rt3.8-rtfm: DNE
natty_rt3.8-rtfm: DNE
oneiric_rt3.8-rtfm: DNE
precise_rt3.8-rtfm: DNE
precise/esm_rt3.8-rtfm: DNE
quantal_rt3.8-rtfm: DNE
raring_rt3.8-rtfm: DNE
saucy_rt3.8-rtfm: DNE
trusty_rt3.8-rtfm: DNE
trusty/esm_rt3.8-rtfm: DNE
utopic_rt3.8-rtfm: DNE
vivid_rt3.8-rtfm: DNE
vivid/stable-phone-overlay_rt3.8-rtfm: DNE
vivid/ubuntu-core_rt3.8-rtfm: DNE
wily_rt3.8-rtfm: DNE
xenial_rt3.8-rtfm: DNE
yakkety_rt3.8-rtfm: DNE
zesty_rt3.8-rtfm: DNE
devel_rt3.8-rtfm: DNE

Patches_request-tracker4:
upstream_request-tracker4: released (4.0.6-1)
hardy_request-tracker4: DNE
lucid_request-tracker4: DNE
natty_request-tracker4: DNE
oneiric_request-tracker4: ignored (reached end-of-life)
precise_request-tracker4: ignored (reached end-of-life)
precise/esm_request-tracker4: DNE (precise was needs-triage)
quantal_request-tracker4: not-affected (4.0.6-3)
raring_request-tracker4: not-affected (4.0.6-3)
saucy_request-tracker4: not-affected (4.0.6-3)
trusty_request-tracker4: not-affected (4.0.6-3)
trusty/esm_request-tracker4: DNE (trusty was not-affected [4.0.6-3])
utopic_request-tracker4: not-affected (4.0.6-3)
vivid_request-tracker4: not-affected (4.0.6-3)
vivid/stable-phone-overlay_request-tracker4: DNE
vivid/ubuntu-core_request-tracker4: DNE
wily_request-tracker4: not-affected (4.0.6-3)
xenial_request-tracker4: not-affected (4.0.6-3)
yakkety_request-tracker4: not-affected (4.0.6-3)
zesty_request-tracker4: not-affected (4.0.6-3)
devel_request-tracker4: not-affected (4.0.6-3)