RT: Request Tracker 3.5.HEAD allows remote attackers to obtain sensitive information via the Rows parameter in Dist/Display.html, which reveals the installation path in an error message.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Request_tracker | Best_practical_solutions | 3.5.head (including) | 3.5.head (including) |