FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

redmine -- information leak vulnerability

Affected packages
redmine < 2.4.6
2.5.0 <= redmine < 2.5.2

Details

VuXML ID 49def4b7-9ed6-11e5-8f5c-002590263bf5
Discovery 2014-07-06
Entry 2015-12-10

Redmine reports:

Potential data leak (project names) in the invalid form authenticity token error screen.

References

URL http://www.redmine.org/projects/redmine/wiki/Security_Advisories