Lucene search
K

Mantis MantisBT Bug Tracker adm_config_report.php move_attachments_page.php XSS (CVE-2017-7309)

🗓️ 05 Jun 2017 00:00:00Reported by Check Point AdvisoriesType 
checkpoint_advisories
 checkpoint_advisories
👁 4 Views

Three XSS vulnerabilities in Mantis Bug Tracker (MantisBT) due to insufficient input validation in adm_config_report.php and move_attachments_page.php (CVE-2017-7309

Related
ReporterTitlePublishedViews
Family
CNVD
MantisBT Cross-Site Scripting Vulnerability (CNVD-2017-04630)
1 Apr 201700:00
cnvd
CVE
CVE-2017-7309
31 Mar 201704:26
cve
Cvelist
CVE-2017-7309
31 Mar 201704:26
cvelist
EUVD
EUVD-2017-16336
7 Oct 202500:30
euvd
Github Security Blog
MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php
17 May 202202:30
github
NVD
CVE-2017-7309
31 Mar 201704:59
nvd
OSV
GHSA-4W6C-3HCX-RFJ5 MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php
17 May 202202:30
osv
Prion
Cross site scripting
31 Mar 201704:59
prion
Snyk
Cross-site Scripting (XSS)
17 May 202202:30
snyk
SUSE CVE
SUSE CVE-2017-7309
15 Feb 202304:48
susecve
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

14 Jul 2017 00:00Current
2.4Low risk
Vulners AI Score2.4
EPSS0.57699
4