9 matches found
Gentoo Security Advisory GLSA 201211-01 (MantisBT)
The remote host is missing updates announced in advisory GLSA 201211-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Fedora Update for mantis FEDORA-2010-19070
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 12 : mantis-1.1.8-4.fc12 (2010-15080)
Mon Sep 20 2010 Gianluca Sforna - 1.1.8-4 - Fix CVE-2010-3070 using system's NuSOAP 633011 - Fix CVE-2010-2574 and CVE-2010-3303 633003 634340 - Sun Jan 17 2010 Gianluca Sforna - 1.1.8-3 - Tweak summary - Don't restart apache 552943 Note that Tenable Network Security has extracted the preceding...
Fedora 14 : mantis-1.1.8-4.fc14 (2010-15061)
Bug 633011 - Mantis: Vulnerable to CVE-2010-3070 XSS in php-nusoap due use of embedded copy of nusoap library - Bug 634340 - CVE-2010-3303 mantis: several XSS flaws fixed in 1.2.3 - Bug 633003 - CVE-2010-2574 Mantis: XSS in Add Category action. Note that Tenable Network Security has extracted the...
Cross site scripting
Cross-site scripting XSS vulnerability in core/summaryapi.php in MantisBT before 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the Summary field, a different vector than CVE-2010-3303...
CVE-2010-3303
CVE-2010-3303 affects MantisBT prior to 1.2.3. Multiple XSS vulnerabilities allow a remote authenticated administrator to inject arbitrary script/HTML via (1) plugin name (manage_plugin_uninstall.php), (2) an enumeration value, (3) a String value of a custom field (core/cfdefs/cfdef_standard.php)...
CVE-2010-3303
Multiple cross-site scripting XSS vulnerabilities in MantisBT before 1.2.3 allow remote authenticated administrators to inject arbitrary web script or HTML via 1 a plugin name, related to managepluginuninstall.php; 2 an enumeration value or 3 a String value of a custom field, related to...
Fedora Update for mantis FEDORA-2010-15080
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for mantis FEDORA-2010-15082
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...