4 matches found
MantisBT < 2.17.2 Multiple XSS Vulnerabilities - Linux
MantisBT is prone to multiple cross-site scripting vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
MantisBT < 2.17.2 Multiple XSS Vulnerabilities - Windows
MantisBT is prone to multiple cross-site scripting vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2018-17783
A cross-site scripting XSS vulnerability in the Edit Filter page managefilteredit page.php in MantisBT 2.1.0 through 2.17.1 allows remote attackers if access rights permit it to inject arbitrary code if CSP settings permit it through a crafted project name...
CVE-2018-17783
CVE-2018-17783 is an XSS vulnerability in MantisBT's Edit Filter page (manage_filter_edit page.php) affecting versions 2.1.0 through 2.17.1. An attacker with appropriate access rights can inject arbitrary code through a crafted project name if CSP settings permit script execution. The issue is mi...