Vulnerability Description
A HTML Injection vulnerability was identified in Issuetrak version 17.1 that could be triggered by an authenticated user. HTML markup could be added to comments of tickets, which when submitted will render in the emails sent to all users on that ticket.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2024-11479?
CVE-2024-11479 is a documented vulnerability. A HTML Injection vulnerability was identified in Issuetrak version 17.1 that could be triggered by an authenticated user. HTML markup could be added to comments of tickets, which when submitted will r...
How severe is CVE-2024-11479?
CVSS scoring is not yet available for CVE-2024-11479. Check NVD for updates.
Is there a patch for CVE-2024-11479?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.