Количество 4
Количество 4
CVE-2018-14504
An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar" onclick="alert(1)').
CVE-2018-14504
An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar" onclick="alert(1)').
CVE-2018-14504
An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x ...
GHSA-74gh-5j33-vg4w
MantisBT allows XSS on the Edit Filter page via crafted filter name
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-14504 An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar" onclick="alert(1)'). | CVSS3: 6.1 | 0% Низкий | больше 7 лет назад |
 | CVE-2018-14504 An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar" onclick="alert(1)'). | CVSS3: 6.1 | 0% Низкий | больше 7 лет назад |
| CVE-2018-14504 An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x ... | CVSS3: 6.1 | 0% Низкий | больше 7 лет назад |
| GHSA-74gh-5j33-vg4w MantisBT allows XSS on the Edit Filter page via crafted filter name | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу