VulnerableCode Package Details - pkg:deb/debian/redmine@4.0.7-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-b2yh-snxf-6uft	Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile inline links.	CVE-2020-36307
VCID-rhz3-bz8y-p7an	Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discover the subject of a non-visible issue by performing a CSV export and reading time entries.	CVE-2020-36308
VCID-sw97-t1zg-13b1	Redmine before 4.0.7 and 4.1.x before 4.1.1 has XSS via the back_url field.	CVE-2020-36306

Vulnerability

Summary

Aliases

VCID-b2yh-snxf-6uft

Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile inline links.

CVE-2020-36307

VCID-rhz3-bz8y-p7an

Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discover the subject of a non-visible issue by performing a CSV export and reading time entries.

CVE-2020-36308

VCID-sw97-t1zg-13b1

Redmine before 4.0.7 and 4.1.x before 4.1.1 has XSS via the back_url field.

CVE-2020-36306

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:20:03.542687+00:00	Debian Importer	Fixing	VCID-sw97-t1zg-13b1	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:10:37.222343+00:00	Debian Importer	Fixing	VCID-b2yh-snxf-6uft	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:45:35.861376+00:00	Debian Importer	Fixing	VCID-rhz3-bz8y-p7an	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T07:42:49.860130+00:00	Debian Importer	Fixing	VCID-sw97-t1zg-13b1	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:35:49.286847+00:00	Debian Importer	Fixing	VCID-b2yh-snxf-6uft	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:16:39.159844+00:00	Debian Importer	Fixing	VCID-rhz3-bz8y-p7an	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:51:58.049859+00:00	Debian Importer	Fixing	VCID-rhz3-bz8y-p7an	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:58.015854+00:00	Debian Importer	Fixing	VCID-b2yh-snxf-6uft	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:51:57.982296+00:00	Debian Importer	Fixing	VCID-sw97-t1zg-13b1	https://security-tracker.debian.org/tracker/data/json	38.1.0