CVE-2011-4928
Redmine < 1.0.4 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the textile formatter in Redmine before 1.0.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Scores
EPSS
0.0026
EPSS Percentile
48.7%
Classification
CWE
CWE-79
Status
published
Affected Products (42)
redmine/redmine
< 1.0.4
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
redmine/redmine
... and 27 more
Timeline
Published
Oct 08, 2012
Tracked Since
Feb 18, 2026