Lucene search

K
cvelistRedhatCVELIST:CVE-2010-4348
HistoryJan 03, 2011 - 7:26 p.m.

CVE-2010-4348

2011-01-0319:26:00
redhat
www.cve.org

5.4 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%

Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

5.4 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.0%