Mantisbt@1.2.19 Security Vulnerabilities and Issues — Mantisbt@1.2.19 CVE List

Lucene search

MantisbtMantisbt1.2.19

2 matches found

cve•added 2017/03/31 4:59 a.m.•49 views

CVE-2017-7241

A cross-site scripting (XSS) vulnerability in the MantisBT Move Attachments page (move_attachments_page.php, part of admin tools) allows remote attackers to inject arbitrary code through a crafted 'type' parameter, if Content Security Protection (CSP) settings allows it. This is fixed in 1.3.9, 2.1...

4.8CVSS4.8AI score0.00804EPSS

cve•added 2017/08/28 3:29 p.m.•36 views

CVE-2015-2046

Cross-site scripting (XSS) vulnerability in MantisBT 1.2.13 and later before 1.2.20.

6.1CVSS6.1AI score0.00374EPSS