4 matches found
CVE-2014-9701
Cross-site scripting XSS vulnerability in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter to permalinkpage.php...
CVE-2014-9701
Cross-site scripting XSS vulnerability in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter to permalinkpage.php...
CVE-2014-9701
CVE-2014-9701 affects MantisBT before 1.2.19 and in 1.3.x before 1.3.0-beta.2. The vulnerability is an XSS via the url parameter to permalink_page.php, enabling an attacker to inject arbitrary script/HTML. Affected components are the permalink_page handling in MantisBT; root cause is insufficient...
MantisBT 1.3.0-beta.1 Multiple Vulnerabilities
Binary data 8907.prm...