Lucene search
K

4329 matches found

Cvelist
Cvelist
added 2026/05/22 7:39 p.m.8 views

CVE-2026-40607 MantisBT is Vulnerable to Stored XSS Through its Saved-Filter Owner Column

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS0.00419EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 7:39 p.m.10 views

CVE-2026-40607 MantisBT is Vulnerable to Stored XSS Through its Saved-Filter Owner Column

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:39 p.m.6 views

CVE-2026-40607

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.11.0 through 2.28.1, a Stored XSS vulnerability is caused by incorrect escaping of a saved filter's owner, allowing an attacker to inject arbitrary HTML on systems where $gshowuserrealname = ON. Note that By default, only...

7.5CVSS5.9AI score0.00419EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/05/22 7:39 p.m.41 views

CVE-2026-40607

CVE-2026-40607 affects MantisBT versions 2.11.0–2.28.1, where a Stored XSS arises from incorrect escaping of the saved filter owner when $g_show_user_realname is ON. Impact is XSS in contexts where real names are displayed; default access control restricts saving public filters to Manager+ users....

7.5CVSS5.9AI score0.00419EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:32 p.m.7 views

CVE-2026-40598

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/22 7:32 p.m.9 views

CVE-2026-40598 MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/22 7:32 p.m.10 views

EUVD-2026-31494

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, improper escaping of the redirection page retrieved from the request's Referer header allows an attacker to inject HTML. While this is generally not directly actionable as modern browsers will URL-encode...

6.9CVSS5.3AI score0.00447EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 7:29 p.m.13 views

CVE-2026-40597 MantisBT has a Content Security Policy bypass via attachments

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS5.7AI score0.00498EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/22 7:29 p.m.23 views

CVE-2026-40597 MantisBT has a Content Security Policy bypass via attachments

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS0.00498EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:29 p.m.7 views

CVE-2026-40597

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS5.8AI score0.00498EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/22 7:29 p.m.16 views

EUVD-2026-31496

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.28.1 and below, given any pre-existing XSS / HTML injection vulnerability, an attacker can bypass the Content Security Policy's script-src directive by uploading a crafted attachment to any issue that, when accessed via th...

7.6CVSS5.7AI score0.00498EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/22 7:25 p.m.8 views

CVE-2026-40596 MantisBT is vulnerable to XSS and potential account takeover via user font family preference update

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.11.0 through 2.28.1 allow any authenticated user to inject arbitrary HTML by updating their account's font family. Upon exploitation, an XSS payload would be reflected on every MantisBT page. Leveraging another vulnerability...

7.2CVSS5.9AI score0.00424EPSS
Exploits0References5
CVE
CVE
added 2026/05/22 7:25 p.m.39 views

CVE-2026-40596

Summary (CVE-2026-40596): MantisBT versions 2.11.0–2.28.1 are vulnerable to cross-site scripting via an authenticated user updating their font-family preference. The XSS payload is reflected on every page; with a CSP bypass (GHSA-9c3j-xm6v-j7j3) this could enable account takeover. The issue is fi...

7.2CVSS5.8AI score0.00424EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/22 7:25 p.m.10 views

EUVD-2026-31492

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.11.0 through 2.28.1 allow any authenticated user to inject arbitrary HTML by updating their account's font family. Upon exploitation, an XSS payload would be reflected on every MantisBT page. Leveraging another vulnerability...

7.2CVSS5.9AI score0.00424EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/22 7:25 p.m.10 views

CVE-2026-40596 MantisBT is vulnerable to XSS and potential account takeover via user font family preference update

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.11.0 through 2.28.1 allow any authenticated user to inject arbitrary HTML by updating their account's font family. Upon exploitation, an XSS payload would be reflected on every MantisBT page. Leveraging another vulnerability...

7.2CVSS0.00424EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/22 7:25 p.m.7 views

CVE-2026-40596

Mantis Bug Tracker MantisBT is an open source issue tracker. Versions 2.11.0 through 2.28.1 allow any authenticated user to inject arbitrary HTML by updating their account's font family. Upon exploitation, an XSS payload would be reflected on every MantisBT page. Leveraging another vulnerability...

7.2CVSS5.9AI score0.00424EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-41075

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RT is an open source, enterprise-grade issue and ticket tracking system. Versions 5.0.0 through 5.0.9 and 6.0.0 through 6.0.2 contain an SQL injection...

8.8CVSS5.5AI score0.00344EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-6841

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Request Tracker is vulnerable to a reflected cross-site scripting XSS vulnerability via the Page parameter in GET requests. An attacker can craft a URL that, wh...

6.1CVSS5.6AI score0.00235EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.13 views

Request Tracker 跨站请求伪造漏洞

Request Tracker is a problem and ticket tracking system developed by Request Tracker Inc. Versions 6.0.0 to 6.0.2 of Request Tracker contain a cross-site request forgeing vulnerability. This vulnerability arises from cross-site request forgery, allowing attackers to induce logged-in users to acce...

7.1CVSS5.9AI score0.00117EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.8 views

Mantis Bug Tracker 安全漏洞

Mantis Bug Tracker MantisBT is an open-source bug tracker developed by Mantis Bug Tracker. Mantis Bug Tracker versions 2.28.1 and earlier have security vulnerabilities, which stem from improper escaping of redirect pages, potentially leading to HTML injection attacks. The following versions are...

6.9CVSS5.8AI score0.00447EPSS
Exploits0References3
Rows per page
Query Builder