Lucene search

CVE-2018-13055

🗓️ 03 Aug 2018 18:00:29Reported by mitreType

cve🔗 web.nvd.nist.gov👁 36 Views🌐 WEB

A XSS vulnerability in MantisBT 2.1.0 through 2.15.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 15
RedhatCVE	CVE-2018-13055	20 May 202223:43	–	redhatcve
OSV	CVE-2018-13055	3 Aug 201818:29	–	osv
OSV	CVE-2018-16514	20 Jun 201914:15	–	osv
UbuntuCve	CVE-2018-13055	3 Aug 201800:00	–	ubuntucve
NVD	CVE-2018-13055	3 Aug 201818:29	–	nvd
NVD	CVE-2018-16514	20 Jun 201914:15	–	nvd
Packet Storm	Mantis 2.11.1 Cross Site Scripting	8 Jan 201900:00	–	packetstorm
Prion	Cross site scripting	3 Aug 201818:29	–	prion
Prion	Cross site scripting	20 Jun 201914:15	–	prion
Cvelist	CVE-2018-13055	3 Aug 201818:00	–	cvelist

Nvd

Node

mantisbt mantisbtRange2.1.0–2.15.0

Source	Link
mantisbt	www.mantisbt.org/bugs/view.php
github	www.github.com/mantisbt/mantisbt/commit/4efac90ed89a5c009108b641e2e95683791a165a
mantisbt	www.mantisbt.org/blog/archives/mantisbt/602

Parameter	Position	Path	Description	CWE
PATH_INFO	path	/{mantis_path}/view_filters_page.php	Cross-site scripting (XSS) vulnerability in the View Filters page allowing injection of arbitrary code.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Aug 2018 18:29Current

5.1Medium risk

Vulners AI Score5.1

CVSS24.3

CVSS36.1

EPSS0.0037

CWE-79