pkg:Debian/request-tracker5
24 total CVEsHIGH7MEDIUM9LOW2
✅ Check your installed version
All known vulnerabilities
- from 0
- from 0
- HIGH7.5CVE-2023-45024Best Practical Request Tracker (RT) 5 before 5.0.5 allows Information Disclosure via a transaction search in the transaction query builder.from 0, < 5.0.3+dfsg-3~deb12u2
- HIGH7.5CVE-2023-41260Best Practical Request Tracker (RT) before 4.4.7 and 5.x before 5.0.5 allows Information Exposure in responses to mail-gateway REST API cal…from 0, < 5.0.3+dfsg-3~deb12u2
- from 0, < 5.0.3+dfsg-3~deb12u2
- from 0, < 5.0.3+dfsg-3~deb12u2
- from 0, < 5.0.3+dfsg-1
- MEDIUM6.1CVE-2026-6841Request Tracker is vulnerable to a reflected cross-site scripting (XSS) vulnerability via the "Page" parameter in GET requests.from 0
- MEDIUM6.1CVE-2025-31501Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink.from 0, < 5.0.3+dfsg-3~deb12u3
- MEDIUM6.1CVE-2025-31500Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an Asset name.from 0, < 5.0.3+dfsg-3~deb12u3
- MEDIUM6.1CVE-2025-30087Best Practical RT (Request Tracker) 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL.from 0, < 5.0.3+dfsg-3~deb12u3
- MEDIUM6.1CVE-2022-25803Best Practical Request Tracker (RT) before 5.0.3 has an Open Redirect via a ticket search.from 0, < 5.0.3+dfsg-1
- from 0, < 5.0.3+dfsg-1
- from 0, < 5.0.3+dfsg-3~deb12u3
- from 0, < 5.0.3+dfsg-3~deb12u3
- from 0
- from 0, < 5.0.3+dfsg-3~deb12u4
- from 0, < 5.0.3+dfsg-3~deb12u4
- from 0
- from 0
- from 0
- from 0
- —CVE-2025-9158The Request Tracker software is vulnerable to a Stored XSS vulnerability in calendar invitation parsing feature, which displays invitation…from 0, < 5.0.7+dfsg-4+deb13u1
- —CVE-2025-2545Vulnerability in Best Practical Solutions, LLC's Request Tracker prior to v5.0.8, where the Triple DES (3DES) cryptographic algorithm is us…from 0, < 5.0.3+dfsg-3~deb12u3