2 matches found
CVE-2017-7222
Summary: CVE-2017-7222 describes a cross-site scripting (XSS) vulnerability in MantisBT prior to 2.1.1 that allows remote attackers to inject arbitrary HTML or JavaScript by modifying the application’s window_title configuration. This requires privileged access to MantisBT configuration managemen...
MantisBT 2.2.x < 2.2.1 Multiple XSS
Binary data 700004.prm...