Browse all 4 CVE security advisories affecting bestpractical. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bestpractical develops RT, a popular ticketing system used for issue tracking and helpdesk operations. Historically, their vulnerabilities have frequently included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control issues. The platform's modular architecture and extensive plugin ecosystem have introduced additional attack surfaces. While no major public security incidents have been widely documented, the presence of four CVEs indicates ongoing security challenges that require regular patching and careful configuration to mitigate potential risks in enterprise environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30087 | Best Practical RT 跨站脚本漏洞 — RTCWE-79 | 7.2 | High | 2025-05-28 |
| CVE-2025-31501 | Best Practical RT 跨站脚本漏洞 — RTCWE-79 | 7.2 | High | 2025-05-28 |
| CVE-2025-31500 | Best Practical RT 跨站脚本漏洞 — RTCWE-79 | 7.2 | High | 2025-05-28 |
This page lists every published CVE security advisory associated with bestpractical. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.