5 matches found
MantisBT 2.2.x < 2.2.1 Multiple XSS
Binary data 700004.prm...
MantisBT < 1.3.7, 2.x < 2.2.1 XSS Vulnerability - Windows
MantisBT is prone to a cross-site scripting XSS vulnerability. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...
CVE-2017-6797
A cross-site scripting XSS vulnerability in bugchangestatuspage.php in MantisBT before 1.3.7 and 2.x before 2.2.1 allows remote attackers to inject arbitrary JavaScript via the 'actiontype' parameter...
CVE-2017-6797
A cross-site scripting XSS vulnerability in bugchangestatuspage.php in MantisBT before 1.3.7 and 2.x before 2.2.1 allows remote attackers to inject arbitrary JavaScript via the 'actiontype' parameter...
CVE-2017-6797
CVE-2017-6797 is a cross-site scripting (XSS) vulnerability in MantisBT. The issue affects MantisBT pages bug_change_status_page.php, exploitable in versions before 1.3.7 and before 2.2.1. The vulnerability arises from improper handling of the action_type parameter, allowing remote attackers to i...