Lucene search
Ubuntu.comUB:CVE-2005-3090HistorySep 28, 2005 - 12:00 a.m.
CVE-2005-3090
2005-09-2800:00:00
ubuntu.com
ubuntu.com
7
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
49.1%
Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in
Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary
web script or HTML via the summary of the bug, which is not quoted when
view_all_bug_page.php is used to delete the bug, as identified by
bug#0006002, a different vulnerability than CVE-2005-2557.
Related
ubuntucve
ubuntucve
CVE-2005-2557
2005-09-28 00:00:00
cve
cve
CVE-2005-2557
2005-09-28 21:03:00
CVE-2005-3090
2005-09-28 22:03:00
osv
osv
mantis - missing input sanitising
2005-08-19 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-778-1)
2008-01-17 00:00:00
MantisBT < 1.0.0rc2 Multiple Vulnerabilities
2006-03-26 00:00:00
Mantis Multiple Flaws (4)
2006-03-26 00:00:00
nessus
nessus
Debian DSA-778-1 : mantis - missing input sanitising
2005-08-23 00:00:00
Mantis < 1.0.0rc2 Multiple Vulnerabilities
2005-08-22 00:00:00
GLSA-200509-16 : Mantis: XSS and SQL injection vulnerabilities
2005-10-05 00:00:00
debian
debian
[SECURITY] [DSA 778-1] New mantis packages fix several vulnerabilities
2005-08-19 13:59:56
[SECURITY] [DSA 778-1] New mantis packages fix several vulnerabilities
2005-08-19 13:59:56
securityvulns
securityvulns
[SECURITY] [DSA 778-1] New mantis packages fix several vulnerabilities
2005-08-19 00:00:00
gentoo
gentoo
Mantis: XSS and SQL injection vulnerabilities
2005-09-24 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
49.1%
Related for UB:CVE-2005-3090