Lucene search
HistoryJan 10, 2014 - 3:55 p.m.
CVE-2013-4460
cve-2013-4460
xss
vulnerability
mantisbt
web security
nvd
4.9 Medium
AI Score
Confidence
High
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
45.3%
Cross-site scripting (XSS) vulnerability in account_sponsor_page.php in MantisBT 1.0.0 through 1.2.15 allows remote authenticated users to inject arbitrary web script or HTML via a project name.
Related
nessus
nessus
Fedora 18 : mantis-1.2.15-3.fc18 (2013-20176)
2013-11-25 00:00:00
Fedora 20 : mantis-1.2.15-3.fc20 (2013-20138)
2013-11-25 00:00:00
Fedora 19 : mantis-1.2.15-3.fc19 (2013-20202)
2013-11-25 00:00:00
ubuntucve
ubuntucve
CVE-2013-4460
2014-01-10 00:00:00
prion
prion
Cross site scripting
2014-01-10 15:55:00
fedora
fedora
[SECURITY] Fedora 20 Update: mantis-1.2.15-3.fc20
2013-11-24 03:44:48
[SECURITY] Fedora 19 Update: mantis-1.2.15-3.fc19
2013-11-24 03:28:37
[SECURITY] Fedora 18 Update: mantis-1.2.15-3.fc18
2013-11-24 03:51:46
openvas
openvas
Fedora Update for mantis FEDORA-2013-20202
2013-11-26 00:00:00
Fedora Update for mantis FEDORA-2013-20202
2013-11-26 00:00:00
Fedora Update for mantis FEDORA-2013-20176
2013-11-26 00:00:00
osv
osv
mantis - security update
2015-01-06 00:00:00
4.9 Medium
AI Score
Confidence
High
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
45.3%
Related for CVE-2013-4460