Vulnerability Database

Published: May 28, 2025
Updated: Nov 16, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-31501" target="_blank" rel="noopener"> CVE-2025-31501
Severity: High
Exploit:

317,107

Total vulnerabilities in the database

Best Practical RT (Request Tracker) 5.0 through 5.0.7 allows XSS via JavaScript injection in an RT permalink.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
bestpractical / request_tracker	4.4.0	4.4.8
bestpractical / request_tracker	5.0.0	5.0.8

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.