Download
| Alert*
DSA-1944 request-tracker3.4 request-tracker3.6 -- session hijack
Mikal Gule discovered that request-tracker, an extensible trouble-ticket tracking system, is prone to an attack, where an attacker with access to the same domain can hijack a user's RT session.
|