Lucene search
HistorySep 28, 2005 - 10:03 p.m.
CVE-2005-3091
cve-2005-3091
cross-site scripting
xss vulnerability
mantis
1.0.0rc1
remote attackers
web script
html
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.6%
Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 “thraxisp”.
Related
ubuntucve
ubuntucve
CVE-2005-3091
2005-09-28 00:00:00
nessus
nessus
Debian DSA-778-1 : mantis - missing input sanitising
2005-08-23 00:00:00
Mantis < 1.0.0rc2 Multiple Vulnerabilities
2005-08-22 00:00:00
Debian DSA-905-1 : mantis - several vulnerabilities
2006-10-14 00:00:00
openvas
openvas
Mantis Multiple Flaws (4)
2006-03-26 00:00:00
Mantis Multiple Flaws (4)
2006-03-26 00:00:00
Debian Security Advisory DSA 905-1 (mantis)
2008-01-17 00:00:00
osv
osv
mantis - several
2005-11-22 00:00:00
debian
debian
[SECURITY] [DSA 905-1] New mantis packages fix several vulnerabilities
2005-11-22 05:51:33
[SECURITY] [DSA 905-1] New mantis packages fix several vulnerabilities
2005-11-22 05:51:33
5.5 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
74.6%
Related for CVE-2005-3091