Lucene search

K
cve[email protected]CVE-2007-6611
HistoryJan 03, 2008 - 10:46 p.m.

CVE-2007-6611

2008-01-0322:46:00
CWE-79
web.nvd.nist.gov
22
cve-2007-6611
cross-site scripting
xss
mantis
vulnerability
web script
html
bug_report.php

5.4 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

74.9%

Cross-site scripting (XSS) vulnerability in view.php in Mantis before 1.1.0 allows remote attackers to inject arbitrary web script or HTML via a filename, related to bug_report.php.

CPENameOperatorVersion
mantis:mantismantisle1.1.0a1

5.4 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

74.9%

Related for CVE-2007-6611