Mantis bug_actiongroup_page.php Bug Report Deletion XSS

2005-08-22T06:12:17
ID OSVDB:18900
Type osvdb
Reporter OSVDB
Modified 2005-08-22T06:12:17

Description

Solution Description

Upgrade to version 1.0.0rc1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://www.mantisbt.org/changelog.php Vendor Specific News/Changelog Entry: http://bugs.mantisbt.org/view.php?id=5751 Vendor Specific Advisory URL Secunia Advisory ID:16506 Secunia Advisory ID:16536 Secunia Advisory ID:16938 Secunia Advisory ID:17362 Related OSVDB ID: 18901 Related OSVDB ID: 18902 Related OSVDB ID: 18903 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200510-24.xml Other Advisory URL: http://www.debian.org/security/2005/dsa-778 Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200509-16.xml Keyword: bug#0005751 Keyword: thraxisp CVE-2005-3090 CVE-2005-3091