2 matches found
MantisBT Source Integration Plugin Cross-Site Scripting Vulnerability
MantisBT is MantisBT team of a Web-based open source defect tracking system . The system provides project management and defect tracking services in the form of Web operations . Source Integration plugin is used in which a source code control integration plugin . A cross-site scripting...
CVE-2018-16362
CVE-2018-16362 affects the Source Integration plugin for MantisBT, vulnerable in versions prior to 1.5.9 and 2.x prior to 2.1.5. The issue is a cross-site scripting (XSS) flaw on the Manage Repository and Changesets List pages, exploitable to run arbitrary code if CSP settings permit it via repo_...