CVE-2013-4460

Published: Jan 10, 2014Modified: Apr 29, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in account_sponsor_page.php in MantisBT 1.0.0 through 1.2.15 allows remote authenticated users to inject arbitrary web script or HTML via a project name.

Affected (55)

Products: Mantisbt: Mantisbt

Mantisbt

1 product

Mantisbt

Configuration A

55 vulnerable

Vulnerable Software	Affected Versions
Mantisbt Mantisbt	Version 1.0.0
Mantisbt Mantisbt	Version 1.0.0 a1
Mantisbt Mantisbt	Version 1.0.0 a2
Mantisbt Mantisbt	Version 1.0.0 a3
Mantisbt Mantisbt	Version 1.0.0 rc1
Mantisbt Mantisbt	Version 1.0.0 rc2
Mantisbt Mantisbt	Version 1.0.0 rc3
Mantisbt Mantisbt	Version 1.0.0 rc4
Mantisbt Mantisbt	Version 1.0.0 rc5
Mantisbt Mantisbt	Version 1.0.1
Mantisbt Mantisbt	Version 1.0.2
Mantisbt Mantisbt	Version 1.0.3
Mantisbt Mantisbt	Version 1.0.4
Mantisbt Mantisbt	Version 1.0.5
Mantisbt Mantisbt	Version 1.0.6
Mantisbt Mantisbt	Version 1.0.7
Mantisbt Mantisbt	Version 1.0.8
Mantisbt Mantisbt	Version 1.0.9
Mantisbt Mantisbt	Version 1.1.0
Mantisbt Mantisbt	Version 1.1.0 a1
Mantisbt Mantisbt	Version 1.1.0 a2
Mantisbt Mantisbt	Version 1.1.0 a3
Mantisbt Mantisbt	Version 1.1.0 a4
Mantisbt Mantisbt	Version 1.1.0 rc1
Mantisbt Mantisbt	Version 1.1.0 rc2
Mantisbt Mantisbt	Version 1.1.0 rc3
Mantisbt Mantisbt	Version 1.1.1
Mantisbt Mantisbt	Version 1.1.2
Mantisbt Mantisbt	Version 1.1.3
Mantisbt Mantisbt	Version 1.1.4
Mantisbt Mantisbt	Version 1.1.5
Mantisbt Mantisbt	Version 1.1.6
Mantisbt Mantisbt	Version 1.1.7
Mantisbt Mantisbt	Version 1.1.8
Mantisbt Mantisbt	Version 1.1.9
Mantisbt Mantisbt	Version 1.2.0
Mantisbt Mantisbt	Version 1.2.0 alpha1
Mantisbt Mantisbt	Version 1.2.0 alpha2
Mantisbt Mantisbt	Version 1.2.0 alpha3
Mantisbt Mantisbt	Version 1.2.0 rc1
Mantisbt Mantisbt	Version 1.2.0 rc2
Mantisbt Mantisbt	Version 1.2.10
Mantisbt Mantisbt	Version 1.2.11
Mantisbt Mantisbt	Version 1.2.13
Mantisbt Mantisbt	Version 1.2.14
Mantisbt Mantisbt	Version 1.2.15
Mantisbt Mantisbt	Version 1.2.1
Mantisbt Mantisbt	Version 1.2.2
Mantisbt Mantisbt	Version 1.2.3
Mantisbt Mantisbt	Version 1.2.4
Mantisbt Mantisbt	Version 1.2.5
Mantisbt Mantisbt	Version 1.2.6
Mantisbt Mantisbt	Version 1.2.7
Mantisbt Mantisbt	Version 1.2.8
Mantisbt Mantisbt	Version 1.2.9