Gentoo Security Advisory GLSA 201211-01 (MantisBT)

The remote host is missing updates announced in advisory GLSA 201211-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Fedora Update for mantis FEDORA-2011-12336

Check for the Version of mantis OpenVAS Vulnerability Test Fedora Update for mantis FEDORA-2011-12336 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

Fedora Update for mantis FEDORA-2011-12336

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 16 : mantis-1.2.8-1.fc16 (2011-12336)

Update to latest upstream release, fixes several security issues detailed in CVE-2011-2938 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

MantisBT < 1.2.8 Multiple Local File Include and XSS Vulnerabilities

MantisBT is prone to multiple local file include and cross-site scripting XSS vulnerabilities. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-lat...

CVE-2011-3358

Multiple cross-site scripting XSS vulnerabilities in MantisBT before 1.2.8 allow remote attackers to inject arbitrary web script or HTML via the 1 os, 2 osbuild, or 3 platform parameter to a bugreportpage.php or b bugupdateadvancedpage.php, related to use of the Projax library...

CVE-2011-3358

CVE-2011-3358 involves multiple cross-site scripting (XSS) weaknesses in MantisBT before 1.2.8, exploitable via the os, os_build, or platform parameters in bug_report_page.php or bug_update_advanced_page.php due to the Projax library. The vulnerability allows remote attackers to inject arbitrary ...

[SECURITY] [DSA 2308-1] mantis security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2308-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 12, 2011 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2308-1] mantis security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2308-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 12, 2011 http://www.debian.org/security/faq -...

Multiple Vulnerabilities in MantisBT

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in MantisBT which could be exploited to perform cross-site scripting attacks, gain access to sensitive information and compromise vulnerable system. 1 Cross-site scripting XSS vulnerabilities in MantisBT:...