FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

redmine -- potential XSS vulnerability

Affected packages
redmine < 2.6.2

Details

VuXML ID 939a7086-9ed6-11e5-8f5c-002590263bf5
Discovery 2015-02-19
Entry 2015-12-10

Redmine reports:

Potential XSS vulnerability when rendering some flash messages.

References

CVE Name CVE-2015-8477
URL http://www.openwall.com/lists/oss-security/2015/12/05/6
URL http://www.redmine.org/projects/redmine/wiki/Security_Advisories