Security Advisory
CVE-2017-15574
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
In Redmine before 3.2.6 and 3.3.x before 3.3.3, stored XSS is possible by using an SVG document as an attachment.
CVE vulnerability detail — eXtreme Datacenter Security Operations
In Redmine before 3.2.6 and 3.3.x before 3.3.3, stored XSS is possible by using an SVG document as an attachment.