Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2015/01/22 12:0 a.m.70 views

MantisBT 1.2.x < 1.2.18 Multiple Vulnerabilities

According to its version number, the MantisBT application hosted on the remote web server is 1.2.x prior to 1.2.18. It is, therefore, affected by the following vulnerabilities : - Multiple input-validation errors exist that could allow cross-site scripting attacks. CVE-2014-7146, CVE-2014-8986,...

7.5CVSS5.6AI score0.50561EPSS
Exploits15References20
Tenable Nessus
Tenable Nessus
added 2015/01/08 12:0 a.m.45 views

Debian DSA-3120-1 : mantis - security update

Multiple security issues have been found in the Mantis bug tracking system, which may result in phishing, information disclosure, CAPTCHA bypass, SQL injection, cross-site scripting or the execution of arbitrary PHP code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...

7.5CVSS5.3AI score0.50561EPSS
Exploits16References23
OpenVAS
OpenVAS
added 2015/01/06 12:0 a.m.65 views

Debian Security Advisory DSA 3120-1 (mantis - security update)

Multiple security issues have been found in the Mantis bug tracking system, which may result in phishing, information disclosure, CAPTCHA bypass, SQL injection, cross-site scripting or the execution of arbitrary PHP code. OpenVAS Vulnerability Test $Id: deb3120.nasl 6609 2017-07-07 12:05:59Z...

7.5CVSS0.7AI score0.50561EPSS
Exploits16References1
OpenVAS
OpenVAS
added 2014/12/21 12:0 a.m.34 views

Fedora Update for mantis FEDORA-2014-16546

Check the version of mantis SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868626";...

7.5CVSS6.2AI score0.50561EPSS
Exploits22References2
OpenVAS
OpenVAS
added 2014/12/21 12:0 a.m.32 views

Fedora Update for mantis FEDORA-2014-16504

Check the version of mantis SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868624";...

7.5CVSS5.9AI score0.50561EPSS
Exploits23References2
NVD
NVD
added 2014/12/09 11:59 p.m.15 views

CVE-2014-9281

Cross-site scripting XSS vulnerability in admin/copyfield.php in MantisBT before 1.2.18 allows remote attackers to inject arbitrary web script or HTML via the destid field...

4.3CVSS5.3AI score0.02377EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2014/12/09 11:59 p.m.24 views

CVE-2014-9281

Cross-site scripting XSS vulnerability in admin/copyfield.php in MantisBT before 1.2.18 allows remote attackers to inject arbitrary web script or HTML via the destid field...

4.3CVSS6AI score0.02377EPSS
Exploits0References9
CVE
CVE
added 2014/12/09 10:52 p.m.70 views

CVE-2014-9281

CVE-2014-9281 is an XSS in MantisBT prior to 1.2.18 via dest_id in admin/copy_field.php, allowing remote script/HTML injection. Affects MantisBT 1.2.x before 1.2.18; remediation is to upgrade to 1.2.18 or apply patches. Exploitation status is not provided in the available documents.

4.3CVSS5.3AI score0.02377EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder