phpBugTracker 1.0.5 Cross Site Scripting

phpBugTracker 1.0.5 Multiple Reflected XSS Vulnerabilities Vendor: Benjamin Curtis Product web page: http://phpbt.sourceforge.net/ Affected version: 1.0.5 Summary: phpBugTracker is a web-based bug tracker with functionality similar to other issue tracking systems, such as Bugzilla. Design focuses...

phpBugTracker 1.0.5 Multiple Reflected XSS Vulnerabilities

Summary phpBugTracker is a web-based bug tracker with functionality similar to other issue tracking systems, such as Bugzilla. Design focuses on separating the presentation, application, and database layers. phpBugTracker is lightweight and easy to install, operate and administer. Most text can b...

phpBugTracker < 0.9.1 - Multiple Vulnerabilities

phpBugTracke Multiple Vulnerabilities Vendor: Benjamin Curtis Product: phpBugTracke Version: query"delete from ".TBLBUGVOTE." where userid = $u and bugid = $bugid"; As we can see from that line of code taken from about line 30 of user.php it is clear that the $bugid variable is passed into the...