Gentoo Security Advisory GLSA 201211-01 (MantisBT)

The remote host is missing updates announced in advisory GLSA 201211-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora Update for mantis FEDORA-2011-12336

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2011-12336 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Fedora Update for mantis FEDORA-2011-12336

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 16 : mantis-1.2.8-1.fc16 (2011-12336)

Update to latest upstream release, fixes several security issues detailed in CVE-2011-2938 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

MantisBT < 1.2.8 Multiple Local File Include and XSS Vulnerabilities

MantisBT is prone to multiple local file include and cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-lat...

CVE-2011-3356

Multiple cross-site scripting XSS vulnerabilities in configdefaultsinc.php in MantisBT before 1.2.8 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO, as demonstrated by the PATHINFO to 1 manageconfigemailpage.php, 2 manageconfigworkflowpage.php, or 3 bugs/plugin.php...

CVE-2011-3356

CVE-2011-3356 affects MantisBT up to 1.2.8, where multiple XSS vulnerabilities exist in config_defaults_inc.php allowing remote script injection via PATH_INFO to pages such as manage_config_email_page.php, manage_config_workflow_page.php, or bugs/plugin.php. The issue stems from input handling in...

Fedora Update for mantis FEDORA-2011-12369

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Multiple Vulnerabilities in MantisBT

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in MantisBT which could be exploited to perform cross-site scripting attacks, gain access to sensitive information and compromise vulnerable system. 1 Cross-site scripting XSS vulnerabilities in MantisBT:...