logo
DATABASE RESOURCES PRICING ABOUT US

mantis -- multiple vulnerabilities

Description

The Mantis developers report: CVE-2019-15715: [Admin Required - Post Authentication] Command Execution / Injection Vulnerability CVE-2019-8331: In Bootstrap before 3.4.1, XSS is possible in the tooltip or popover data-template attribute Missing integrity hashes for CSS resources from CDNs


Affected Package


OS OS Version Package Name Package Version
FreeBSD any mantis-php71 2.22.1,1
FreeBSD any mantis-php72 2.22.1,1
FreeBSD any mantis-php73 2.22.1,1
FreeBSD any mantis-php74 2.22.1,1

Related