pkg:Debian/request-tracker5

All known vulnerabilities

• HIGH8.8CVE-2026-41075RT is an open source, enterprise-grade issue and ticket tracking system.
  from 0
• HIGH8.1CVE-2026-41076RT is an open source, enterprise-grade issue and ticket tracking system.
  from 0
• HIGH7.5CVE-2023-45024Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a transaction search in the transaction query builder.
  from 0, < 5.0.3+dfsg-3~deb12u2
• HIGH7.5Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure in responses to mail-gateway REST API cal…
  from 0, < 5.0.3+dfsg-3~deb12u2
• HIGH7.5request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u2
• HIGH7.5request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u2
• HIGH7.5request-tracker4 - security update
  from 0, < 5.0.3+dfsg-1
• MEDIUM6.1Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests.
  from 0
• MEDIUM6.1Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink.
  from 0, < 5.0.3+dfsg-3~deb12u3
• MEDIUM6.1Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name.
  from 0, < 5.0.3+dfsg-3~deb12u3
• MEDIUM6.1Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL.
  from 0, < 5.0.3+dfsg-3~deb12u3
• MEDIUM6.1Best Practical Request Tracker (RT) before 5.0.3 has an Open Redirect via a ticket search.
  from 0, < 5.0.3+dfsg-1
• MEDIUM6.1request-tracker4 - security update
  from 0, < 5.0.3+dfsg-1
• MEDIUM5.5request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u3
• MEDIUM5.5request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u3
• MEDIUM4.6RT is an open source, enterprise-grade issue and ticket tracking system.
  from 0
• LOW2.6request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u4
• LOW2.6request-tracker4 - security update
  from 0, < 5.0.3+dfsg-3~deb12u4
• —(no summary)
  from 0
• —(no summary)
  from 0
• —(no summary)
  from 0
• —(no summary)
  from 0
• —The Request Tracker software is vulnerable to a Stored XSS vulnerability in calendar invitation parsing feature, which displays invitation…
  from 0, < 5.0.7+dfsg-4+deb13u1
• —Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES (3DES) cryptographic algorithm is us…
  from 0, < 5.0.3+dfsg-3~deb12u3