Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-17782

Опубликовано: 30 окт. 2018
Источник: ubuntu
Приоритет: medium
CVSS2: 3.5
CVSS3: 5.4

Описание

A cross-site scripting (XSS) vulnerability in the Manage Filters page (manage_filter_page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

needs-triage

xenial

DNE

Показывать по

Ссылки на источники

3.5 Low

CVSS2

5.4 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2018-17782

CVSS3: 5.4
nvd
больше 7 лет назад

A cross-site scripting (XSS) vulnerability in the Manage Filters page (manage_filter_page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.

debian логотип

CVE-2018-17782

CVSS3: 5.4
debian
больше 7 лет назад

A cross-site scripting (XSS) vulnerability in the Manage Filters page ...

github логотип

GHSA-ggjm-7m5f-7xjv

CVSS3: 5.4
github
больше 3 лет назад

MantisBT allows XSS via the Manage Filter page

3.5 Low

CVSS2

5.4 Medium

CVSS3