Mantisbt

mantisbt

Vendor: Mantisbt • 122 CVEs

CVEs (122)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-35571 1Mantisbt 1Mantisbt Nov 21, 2024 Feb 22, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in MantisBT through 2.24.3. In the helper_ensure_confirmed call in manage_custom_field_update.php, the custom field name is not sanitized. This may be problematic depending on CSP settings.
CVE-2020-29605 1Mantisbt 1Mantisbt Nov 21, 2024 Jan 29, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a c...Show more An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)Show less
CVE-2020-29604 1Mantisbt 1Mantisbt Nov 21, 2024 Jan 29, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in MantisBT before 2.24.4. A missing access check in bug_actiongroup.php allows an attacker (with rights to create new issues) to use the COPY group action to create a clone, including all bugnote...Show more An issue was discovered in MantisBT before 2.24.4. A missing access check in bug_actiongroup.php allows an attacker (with rights to create new issues) to use the COPY group action to create a clone, including all bugnotes and attachments, of any private issue (i.e., one having Private view status, or belonging to a private Project) via the bug_arr[] parameter. This provides full access to potentially confidential information.Show less
CVE-2020-29603 1Mantisbt 1Mantisbt Nov 21, 2024 Jan 29, 2021 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 In manage_proj_edit_page.php in MantisBT before 2.24.4, any unprivileged logged-in user can retrieve Private Projects' names via the manage_proj_edit_page.php project_id parameter, without having access to them.
CVE-2020-28413 1Mantisbt 1Mantisbt Nov 21, 2024 Dec 30, 2020 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 In MantisBT 2.24.3, SQL Injection can occur in the parameter "access" of the mc_project_get_users function through the API SOAP.
CVE-2020-35849 1Mantisbt 1Mantisbt Nov 21, 2024 Dec 30, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in MantisBT before 2.24.4. An incorrect access check in bug_revision_view_page.php allows an unprivileged attacker to view the Summary field of private issues, as well as bugnotes revisions, gaini...Show more An issue was discovered in MantisBT before 2.24.4. An incorrect access check in bug_revision_view_page.php allows an unprivileged attacker to view the Summary field of private issues, as well as bugnotes revisions, gaining access to potentially confidential information via the bugnote_id parameter.Show less
CVE-2020-25830 1Mantisbt 1Mantisbt Nov 21, 2024 Sep 30, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An issue was discovered in MantisBT before 2.24.3. Improper escaping of a custom field's name allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript when attempting to up...Show more An issue was discovered in MantisBT before 2.24.3. Improper escaping of a custom field's name allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript when attempting to update said custom field via bug_actiongroup_page.php.Show less
CVE-2020-25781 1Mantisbt 1Mantisbt Nov 21, 2024 Sep 30, 2020 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An issue was discovered in file_download.php in MantisBT before 2.24.3. Users without access to view private issue notes are able to download the (supposedly private) attachments linked to these notes by accessing the co...Show more An issue was discovered in file_download.php in MantisBT before 2.24.3. Users without access to view private issue notes are able to download the (supposedly private) attachments linked to these notes by accessing the corresponding file download URL directly.Show less
CVE-2020-25288 1Mantisbt 1Mantisbt Nov 21, 2024 Sep 30, 2020 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An issue was discovered in MantisBT before 2.24.3. When editing an Issue in a Project where a Custom Field with a crafted Regular Expression property is used, improper escaping of the corresponding form input's pattern a...Show more An issue was discovered in MantisBT before 2.24.3. When editing an Issue in a Project where a Custom Field with a crafted Regular Expression property is used, improper escaping of the corresponding form input's pattern attribute allows HTML injection and, if CSP settings permit, execution of arbitrary JavaScript.Show less
CVE-2020-16266 1Mantisbt 1Mantisbt Nov 21, 2024 Aug 12, 2020 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in MantisBT before 2.24.2. Improper escaping on view_all_bug_page.php allows a remote attacker to inject arbitrary HTML into the page by saving it into a text Custom Field, leading to possible...Show more An XSS issue was discovered in MantisBT before 2.24.2. Improper escaping on view_all_bug_page.php allows a remote attacker to inject arbitrary HTML into the page by saving it into a text Custom Field, leading to possible code execution in the browser of any user subsequently viewing the issue (if CSP settings allow it).Show less
CVE-2019-15539 1Mantisbt 1Mantisbt Nov 21, 2024 Mar 19, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The proj_doc_edit_page.php Project Documentation feature in MantisBT before 2.21.3 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading a...Show more The proj_doc_edit_page.php Project Documentation feature in MantisBT before 2.21.3 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed when editing the document's page.Show less
CVE-2009-2802 1Mantisbt 1Mantisbt Nov 21, 2024 Nov 9, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks.
CVE-2013-1811 2Debian Mantisbt 2Debian Linux Mantisbt Nov 21, 2024 Nov 7, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An access control issue in MantisBT before 1.2.13 allows users with "Reporter" permissions to change any issue to "New".
CVE-2013-1934 2Debian Mantisbt 2Debian Linux Mantisbt Nov 21, 2024 Oct 31, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a comple...Show more A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allows remote authenticated users to inject arbitrary web script or HTML via a complex value.Show less
CVE-2013-1932 1Mantisbt 1Mantisbt Nov 21, 2024 Oct 31, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via a project name.
CVE-2013-1931 2Fedoraproject Mantisbt 2Fedora Mantisbt Nov 21, 2024 Oct 31, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A cross-site scripting (XSS) vulnerability in MantisBT 1.2.14 allows remote attackers to inject arbitrary web script or HTML via a version, related to deleting a version.
CVE-2013-1930 2Fedoraproject Mantisbt 2Fedora Mantisbt Nov 21, 2024 Oct 31, 2019 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues.
CVE-2019-15715 1Mantisbt 1Mantisbt Nov 21, 2024 Oct 9, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 MantisBT before 1.3.20 and 2.22.1 allows Post Authentication Command Injection, leading to Remote Code Execution.
CVE-2019-15074 1Mantisbt 1Mantisbt Nov 21, 2024 Aug 21, 2019 N/A· v4 9.6 CRITICAL· v3 6.8 MEDIUM· v2 The Timeline feature in my_view_page.php in MantisBT through 2.21.1 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment wi...Show more The Timeline feature in my_view_page.php in MantisBT through 2.21.1 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed for any user having visibility to the issue, whenever My View Page is displayed.Show less
CVE-2018-16514 1Mantisbt 1Mantisbt Nov 21, 2024 Jun 20, 2019 N/A· v4 4.7 MEDIUM· v3 2.6 LOW· v2 A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary...Show more A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-13055.Show less

Previous 123 4 5 6 7 Next