Lucene search
+L

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-1926

Malware in sbrugna...

5.4CVSS5.5AI score0.0101EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-1927

Malware in sbrugna...

5.4CVSS5.4AI score0.00924EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-8813

Malware in sbrugna...

3.5CVSS6AI score0.0123EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-8814

Malware in sbrugna...

3.5CVSS6.1AI score0.0123EPSS
Exploits0References8
OSV
OSV
added 2022/05/17 2:30 a.m.5 views

GHSA-V7QF-22RW-CHPH MantisBT XSS via adm_config_report.php's action parameter

A cross-site scripting XSS vulnerability in the MantisBT Configuration Report page admconfigreport.php allows remote attackers to inject arbitrary code through a crafted 'action' parameter. This is fixed in 1.3.8, 2.1.2, and 2.2.2...

4.8CVSS6.1AI score0.00929EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2020/11/05 12:0 a.m.17 views

MantisBT 1.2.13 XSS Vulnerability - Windows

MantisBT is prone to a cross-site scripting vulnerability. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; yo...

5.4CVSS5.4AI score0.0101EPSS
Exploits0References2
NVD
NVD
added 2019/10/31 8:15 p.m.25 views

CVE-2013-1934

A cross-site scripting XSS vulnerability in the configuration report page admconfigreport.php in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value...

5.4CVSS5AI score0.00924EPSS
Exploits0References5
Prion
Prion
added 2019/10/31 8:15 p.m.26 views

Cross site scripting

A cross-site scripting XSS vulnerability in the configuration report page admconfigreport.php in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a project name...

3.5CVSS5.3AI score0.0101EPSS
Exploits0References5Affected Software1
UbuntuCve
UbuntuCve
added 2019/10/31 8:15 p.m.37 views

CVE-2013-1932

A cross-site scripting XSS vulnerability in the configuration report page admconfigreport.php in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a project name...

5.4CVSS6.2AI score0.0101EPSS
Exploits0References2
Prion
Prion
added 2019/10/31 8:15 p.m.21 views

Cross site scripting

A cross-site scripting XSS vulnerability in the configuration report page admconfigreport.php in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value...

3.5CVSS5.3AI score0.00924EPSS
Exploits0References5Affected Software2
CVE
CVE
added 2019/10/31 7:5 p.m.91 views

CVE-2013-1934

The CVE-2013-1934 issue affects MantisBT 1.2.0rc1 and earlier, where the configuration report page adm_config_report.php allows remote authenticated users to inject arbitrary script/HTML via a complex value, enabling cross-site scripting. Root cause: insufficient input sanitization on the adm_con...

5.4CVSS4.9AI score0.00924EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/03/31 4:59 a.m.17 views

CVE-2017-6973

A cross-site scripting XSS vulnerability in the MantisBT Configuration Report page admconfigreport.php allows remote attackers to inject arbitrary code through a crafted 'action' parameter. This is fixed in 1.3.8, 2.1.2, and 2.2.2...

4.8CVSS5.9AI score
Exploits0References4
Cvelist
Cvelist
added 2017/03/31 4:26 a.m.21 views

CVE-2017-6973

A cross-site scripting XSS vulnerability in the MantisBT Configuration Report page admconfigreport.php allows remote attackers to inject arbitrary code through a crafted 'action' parameter. This is fixed in 1.3.8, 2.1.2, and 2.2.2...

4.9AI score0.00929EPSS
Exploits1References4
CNVD
CNVD
added 2015/08/27 12:0 a.m.4 views

MantisBT Configuration Report Page Cross-Site Scripting Vulnerability

MantisBT is a Web-based open source defect tracking system of the MantisBT team . The system provides project management and defect tracking services in the form of Web operations. A cross-site scripting vulnerability exists in the 'set configuration' text box in the Configuration Report page in...

3.5CVSS5.9AI score0.0123EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2015/08/24 3:59 p.m.40 views

CVE-2014-8987

Cross-site scripting XSS vulnerability in the "set configuration" box in the Configuration Report page admconfigreport.php in MantisBT 1.2.13 through 1.2.17 allows remote administrators to inject arbitrary web script or HTML via the configoption parameter, a different vulnerability than...

3.5CVSS6AI score0.0123EPSS
Exploits0References3
CVE
CVE
added 2015/08/24 3:0 p.m.69 views

CVE-2014-8987

Summary (from connected sources): MantisBT versions 1.2.13–1.2.17 contain a cross-site scripting (XSS) vulnerability in the Configuration Report page (adm_config_report.php), exploitable via the config_option parameter, allowing remote administrators to inject arbitrary web script or HTML. The is...

3.5CVSS5.3AI score0.0123EPSS
Exploits0References7Affected Software1
UbuntuCve
UbuntuCve
added 2014/11/24 3:59 p.m.28 views

CVE-2014-8986

Cross-site scripting XSS vulnerability in the selection list in the filters in the Configuration Report page admconfigreport.php in MantisBT 1.2.13 through 1.2.17 allows remote administrators to inject arbitrary web script or HTML via a crafted config option, a different vulnerability than...

3.5CVSS5.9AI score0.0123EPSS
Exploits0References2
CVE
CVE
added 2014/11/24 3:0 p.m.67 views

CVE-2014-8986

CVE-2014-8986 is a documented XSS vulnerability in MantisBT 1.2.13–1.2.17. The flaw resides in the Configuration Report page (adm_config_report.php) where the selection/filters of the Configuration Report can be exploited via the config_option parameter to inject arbitrary script/HTML. The connec...

3.5CVSS5.2AI score0.0123EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder