FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  369787
Date:      2014-10-02
Time:      00:46:54Z
Committer: bdrewery

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a5b24a6b-c37c-11e2-addb-60a44c524f57otrs -- information disclosure

The OTRS Project reports:

An attacker with a valid agent login could manipulate URLs in the ticket split mechanism to see contents of tickets and they are not permitted to see.


Discovery 2013-05-22
Entry 2013-05-23
otrs
lt 3.2.7

CVE-2013-3551
http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2013-03/
eae8e3cf-9dfe-11e2-ac7f-001fd056c417otrs -- Information disclosure and Data manipulation

The OTRS Project reports:

An attacker with a valid agent login could manipulate URLs in the object linking mechanism to see titles of tickets and other objects that are not obliged to be seen. Furthermore, links to objects without permission can be placed and removed.


Discovery 2013-04-02
Entry 2013-04-05
otrs
lt 3.1.14

CVE-2013-2625
http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2013-01/
8b97d289-d8cf-11e2-a1f5-60a44c524f57otrs -- information disclosure

The OTRS Project reports:

An attacker with a valid agent login could manipulate URLs in the ticket watch mechanism to see contents of tickets they are not permitted to see.


Discovery 2013-06-18
Entry 2013-06-19
otrs
lt 3.2.8

CVE-2013-4088
http://www.otrs.com/en/open-source/community-news/security-advisories/security-advisory-2013-04/