vulnerability

Debian: CVE-2025-30087: request-tracker4, request-tracker5 -- security update

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:N/C:P/I:P/A:N)	May 2, 2025	May 2, 2025	Aug 15, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:N)

Published

May 2, 2025

Added

May 2, 2025

Modified

Aug 15, 2025

Description

Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL.

debian-upgrade-request-tracker4debian-upgrade-request-tracker5

NEW

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.