Candidate: CVE-2012-2769
PublicDate: 2012-08-15 21:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2769
 http://lists.bestpractical.com/pipermail/rt-announce/2012-July/000208.html
 http://xforce.iss.net/xforce/xfdb/77211
 http://secunia.com/advisories/50010
Description:
 Multiple cross-site scripting (XSS) vulnerabilities in the topic
 administration page in the Extension::MobileUI extension before 1.02 for
 Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT before
 4.0.6 allow remote attackers to inject arbitrary web script or HTML via
 unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_request-tracker4:
upstream_request-tracker4: released (4.0.6-1)
hardy_request-tracker4: DNE
lucid_request-tracker4: DNE
natty_request-tracker4: DNE
oneiric_request-tracker4: ignored (reached end-of-life)
precise_request-tracker4: ignored (reached end-of-life)
precise/esm_request-tracker4: DNE (precise was needed)
quantal_request-tracker4: not-affected (4.0.6-3)
raring_request-tracker4: not-affected (4.0.6-3)
saucy_request-tracker4: not-affected (4.0.6-3)
trusty_request-tracker4: not-affected (4.0.6-3)
trusty/esm_request-tracker4: DNE (trusty was not-affected [4.0.6-3])
utopic_request-tracker4: not-affected (4.0.6-3)
vivid_request-tracker4: not-affected (4.0.6-3)
vivid/stable-phone-overlay_request-tracker4: DNE
vivid/ubuntu-core_request-tracker4: DNE
wily_request-tracker4: not-affected (4.0.6-3)
xenial_request-tracker4: not-affected (4.0.6-3)
yakkety_request-tracker4: not-affected (4.0.6-3)
zesty_request-tracker4: not-affected (4.0.6-3)
devel_request-tracker4: not-affected (4.0.6-3)