Lucene search
K

20096 matches found

CNNVD
CNNVD
added 2026/05/28 12:0 a.m.13 views

Mantis Bug Tracker 跨站脚本漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Versions of Mantis Bug Tracker prior to 2.28.2 contained a cross-site scripting vulnerability. This vulnerability occurred when using the showinline=1 parameter and a valid CSRF token, allowing attackers to...

7.5CVSS5.8AI score0.00349EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Mantis Bug Tracker 安全漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Versions of Mantis Bug Tracker prior to 2.28.2 contained a security vulnerability. This vulnerability stemmed from the mcissueupdate function, which allowed users with the updatebugthreshold permission to...

5.3CVSS5.8AI score0.00258EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.8 views

Mantis Bug Tracker(MantisBT) 跨站脚本漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Versions of Mantis Bug Tracker from 1.3.0 to 2.28.1 contained a cross-site scripting vulnerability. This vulnerability occurred due to the lack of escaping of project names, allowing attackers with...

8.6CVSS5.6AI score0.00298EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Mantis Bug Tracker 安全漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Versions of Mantis Bug Tracker prior to 2.28.2 contained a security vulnerability. This vulnerability stemmed from a lack of authorization checks in the file visibility function, allowing authenticated user...

7.2CVSS5.8AI score0.0026EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.12 views

Mantis Bug Tracker 跨站脚本漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Versions prior to 2.28.2 of Mantis Bug Tracker had a cross-site scripting vulnerability. This vulnerability stemmed from insufficient validation of the filtertarget parameter in the returndynamicilters.php...

5.3CVSS5.8AI score0.00281EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/26 8:14 p.m.12 views

CVE-2026-40607

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/26 8:13 p.m.13 views

CVE-2026-40597

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS5.8AI score0.00498EPSS
Exploits0References1
NVD
NVD
added 2026/05/22 8:16 p.m.10 views

CVE-2026-40596

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.11.0 through 2.28.1 allow any authenticated user to inject arbitrary HTML by updating their account's font family. Upon exploitation, an XSS payload would be reflected on every MantisBT page. Leveraging another vulnerability...

7.2CVSS0.00424EPSS
Exploits0References5
NVD
NVD
added 2026/05/22 8:16 p.m.11 views

CVE-2026-40597

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS0.00498EPSS
Exploits0References3
NVD
NVD
added 2026/05/22 8:16 p.m.11 views

CVE-2026-40598

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS0.00447EPSS
Exploits0References3
NVD
NVD
added 2026/05/22 8:16 p.m.10 views

CVE-2026-40607

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS0.00419EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/22 7:39 p.m.9 views

CVE-2026-40607 MantisBT is Vulnerable to Stored XSS Through its Saved-Filter Owner Column

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS0.00419EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 7:39 p.m.10 views

CVE-2026-40607 MantisBT is Vulnerable to Stored XSS Through its Saved-Filter Owner Column

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:39 p.m.6 views

CVE-2026-40607

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/22 7:39 p.m.12 views

EUVD-2026-31495

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References3
CVE
CVE
added 2026/05/22 7:39 p.m.43 views

CVE-2026-40607

CVE-2026-40607 affects MantisBT versions 2.11.0–2.28.1, where a Stored XSS arises from incorrect escaping of the saved filter owner when $g_show_user_realname is ON. Impact is XSS in contexts where real names are displayed; default access control restricts saving public filters to Manager+ users....

7.5CVSS5.9AI score0.00419EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:32 p.m.7 views

CVE-2026-40598

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/22 7:32 p.m.12 views

EUVD-2026-31494

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 7:32 p.m.9 views

CVE-2026-40598 MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/22 7:29 p.m.24 views

CVE-2026-40597 MantisBT has a Content Security Policy bypass via attachments

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS0.00498EPSS
Exploits0References3
Rows per page
Query Builder