6 matches found
EUVD-2011-3541
Malware in sbrugna...
EUVD-2011-3321
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in bugactiongroupextpage.php in MantisBT before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the action parameter, related to bugactiongrouppage.php, a different vulnerability than CVE-2011-3357...
CVE-2011-3578
Cross-site scripting XSS vulnerability in bugactiongroupextpage.php in MantisBT before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the action parameter, related to bugactiongrouppage.php, a different vulnerability than CVE-2011-3357...
CVE-2011-3578
CVE-2011-3578 is a cross-site scripting (XSS) vulnerability affecting MantisBT prior to 1.2.8 . The issue is triggered via the parameter action in the script bug_actiongroup_ext_page.php, enabling remote attackers to inject arbitrary web script or HTML. The description links this to bug_actiongro...
CVE-2011-3357
CVE-2011-3357 is a directory traversal (local file inclusion) vulnerability in MantisBT up to version 1.2.8, allowing remote attackers to include and execute arbitrary local files by supplying a .. in the action parameter (via bug_actiongroup_ext_page.php). The issue is caused by insufficient val...