Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mantis mantis 0.19.4 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-4524
Mantis 1.0.0rc3 does not properly handle "Make note private" when a bug is being resolved, which has unknown impact and attack vectors, probably related to an information leak.
440
VMScore
CVE-2006-0841
Multiple cross-site scripting (XSS) vulnerabilities in Mantis 1.00rc4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) hide_status, (2) handler_id, (3) user_monitor, (4) reporter_id, (5) view_type, (6) show_severity, (7) show_c...
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.14.1
Mantis Mantis 0.14.2
Mantis Mantis 0.15
Mantis Mantis 0.15.0
Mantis Mantis 0.15.1
Mantis Mantis 0.18
Mantis Mantis 0.18.0
Mantis Mantis 0.18.2
Mantis Mantis 0.18.3
Mantis Mantis 0.10
Mantis Mantis 0.10.0
Mantis Mantis 0.12.0
Mantis Mantis 0.13
Mantis Mantis 0.14.3
Mantis Mantis 0.14.4
Mantis Mantis 0.15.2
Mantis Mantis 0.16
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.18.0a1
Mantis Mantis 0.18a1
2 EDB exploits
435
VMScore
CVE-2011-2938
Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT prior to 1.2.7 allow remote malicious users to inject arbitrary web script or HTML via a parameter, as demonstrated by the project_id parameter to search.php.
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.1.8
Mantisbt Mantisbt 1.2.2
Mantisbt Mantisbt 1.2.4
Mantisbt Mantisbt 1.2.5
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 1.0.8
Mantisbt Mantisbt 1.1.0
Mantisbt Mantisbt 1.0.6
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.2.3
Mantisbt Mantisbt 1.0.1
Mantisbt Mantisbt 1.0.0
1 EDB exploit
435
VMScore
CVE-2010-4348
Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in MantisBT prior to 1.2.4 allows remote malicious users to inject arbitrary web script or HTML via the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.1.4
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 0.18.0
Mantisbt Mantisbt 0.19.0a1
Mantisbt Mantisbt 1.0.0a2
Mantisbt Mantisbt 1.0.0a3
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.2
Mantisbt Mantisbt 1.0.0a1
Mantisbt Mantisbt 0.19.5
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.0.8
1 EDB exploit
435
VMScore
CVE-2005-4238
Cross-site scripting (XSS) vulnerability in view_filters_page.php in Mantis 1.0.0rc3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the target_field parameter.
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.5
Mantis Mantis 0.15.12
Mantis Mantis 0.15.2
Mantis Mantis 0.15.9
Mantis Mantis 0.16
Mantis Mantis 0.17.3
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.18.2
Mantis Mantis 0.18.3
Mantis Mantis 0.19.1
Mantis Mantis 0.19.2
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.13
Mantis Mantis 0.13.1
Mantis Mantis 0.14.6
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
1 EDB exploit
383
VMScore
CVE-2012-1118
The access_has_bug_level function in core/access_api.php in MantisBT prior to 1.2.9 does not properly restrict access when the private_bug_view_threshold is set to an array, which allows remote malicious users to bypass intended restrictions and perform certain operations on priv...
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.2.0a2
Mantisbt Mantisbt 0.19.0
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.1.8
Mantisbt Mantisbt 1.2.0a1
Mantisbt Mantisbt 1.2.7
Mantisbt Mantisbt 0.19.1
Mantisbt Mantisbt 0.19.2
Mantisbt Mantisbt 1.0.1
Mantisbt Mantisbt 1.0.6
Mantisbt Mantisbt 1.0.7
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.1.4
383
VMScore
CVE-2011-3358
Multiple cross-site scripting (XSS) vulnerabilities in MantisBT prior to 1.2.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) os, (2) os_build, or (3) platform parameter to (a) bug_report_page.php or (b) bug_update_advanced_page.php, related to us...
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.0.8
Mantisbt Mantisbt 1.1.8
Mantisbt Mantisbt 1.2.2
Mantisbt Mantisbt 1.2.5
Mantisbt Mantisbt 1.2.6
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 1.0.1
Mantisbt Mantisbt 1.1.0
Mantisbt Mantisbt 1.0.6
Mantisbt Mantisbt 1.2.0
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.2.3
Mantisbt Mantisbt 1.2.4
Mantisbt Mantisbt 1.0.0
Mantisbt Mantisbt 0.19.4
383
VMScore
CVE-2008-0404
Cross-site scripting (XSS) vulnerability in Mantis prior to 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "Most active bugs" summary.
Mantis Mantis 0.10
Mantis Mantis 0.10.1
Mantis Mantis 0.14
Mantis Mantis 0.14.1
Mantis Mantis 0.14.2
Mantis Mantis 0.15
Mantis Mantis 0.15.1
Mantis Mantis 0.15.5
Mantis Mantis 0.15.6
Mantis Mantis 0.17.0
Mantis Mantis 0.17.1
Mantis Mantis 0.18.0
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.9
Mantis Mantis 0.9.1
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.10.2
383
VMScore
CVE-2006-0664
Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis prior to 1.0 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from th...
Mantis Mantis 0.17.5
Mantis Mantis 0.18
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.4
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.18.3
Mantis Mantis 0.18a1
Mantis Mantis 0.19.2
Mantis Mantis 0.19.3
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.17.1
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a3
Mantis Mantis 0.19.0a
Mantis Mantis 0.19.0a1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.0 Rc3
383
VMScore
CVE-2005-4522
Multiple cross-site scripting (XSS) vulnerabilities in the view_filters_page.php filters script in Mantis 1.0.0rc3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) view_type and (2) target_field parameters.
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »