4 matches found
MantisBT < 2.17.2 Multiple XSS Vulnerabilities - Windows
MantisBT is prone to multiple cross-site scripting vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
MantisBT < 2.17.2 Multiple XSS Vulnerabilities - Linux
MantisBT is prone to multiple cross-site scripting vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2018-17782
A cross-site scripting XSS vulnerability in the Manage Filters page managefilterpage.php in MantisBT 2.1.0 through 2.17.1 allows remote attackers if access rights permit it to inject arbitrary code if CSP settings permit it through a crafted project name...
CVE-2018-17782
CVE-2018-17782 is an XSS vulnerability in MantisBT, affecting versions 2.1.0 through 2.17.1 on the Manage Filters page (manage_filter_page.php). An attacker with appropriate access can inject arbitrary code via a crafted project name (conditions depend on CSP settings). The issue stems from impro...