Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mantis vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-3337
Multiple cross-site scripting (XSS) vulnerabilities in Mantis prior to 0.19.3 allow remote malicious users to inject arbitrary web script or HTML via (1) unknown vectors involving Javascript and (2) mantis/view_all_set.php.
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.2
Mantis Mantis 0.19.1
Mantis Mantis 0.19.3
NA
CVE-2005-3338
Unspecified vulnerability in Mantis prior to 0.19.3, when using reminders, causes Mantis to display the real email addresses of users.
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.1
Mantis Mantis 0.19.3
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.2
NA
CVE-2005-3090
Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in Mantis 0.19.0a1 up to and including 1.0.0a3 allows remote malicious users to inject arbitrary web script or HTML via the summary of the bug, which is not quoted when view_all_bug_page.php is used to delete th...
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 1.0.0a3
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.1
Mantis Mantis 0.19.2
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
NA
CVE-2005-3091
Cross-site scripting (XSS) vulnerability in Mantis prior to 1.0.0rc1 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp".
Mantis Mantis 0.10.0
Mantis Mantis 0.10.1
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
Mantis Mantis 0.15.0
Mantis Mantis 0.15.1
Mantis Mantis 0.16.1
Mantis Mantis 0.17.0
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.0a2
Mantis Mantis 0.10.2
Mantis Mantis 0.11.1
Mantis Mantis 0.14.3
Mantis Mantis 0.14.5
Mantis Mantis 0.15.11
Mantis Mantis 0.15.2
Mantis Mantis 0.15.7
Mantis Mantis 0.15.9
NA
CVE-2005-2557
Cross-site scripting (XSS) vulnerability in view_all_set.php in Mantis 0.19.0a1 up to and including 1.0.0a3 allows remote malicious users to inject arbitrary web script or HTML via the dir parameter, as identified by bug#0005959, and a different vulnerability than CVE-2005-3090.
Mantis Mantis 0.19.0
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.1
Mantis Mantis 0.19.2
Mantis Mantis 1.0.0a1
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Debian Debian Linux 3.1
Gentoo Linux
1 EDB exploit
NA
CVE-2005-2556
core/database_api.php in Mantis 0.19.0a1 up to and including 1.0.0a3, with register_globals enabled, allows remote malicious users to connect to internal databases by modifying the g_db_type variable and monitoring the speed of responses, as identified by bug#0005956.
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.2
Mantis Mantis 1.0.0a1
Mantis Mantis 0.19.0
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.1
NA
CVE-2004-1730
Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote malicious users to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_statu...
Mantis Mantis 0.13
Mantis Mantis 0.13.1
Mantis Mantis 0.14.6
Mantis Mantis 0.14.7
Mantis Mantis 0.15.3
Mantis Mantis 0.15.4
Mantis Mantis 0.16.0
Mantis Mantis 0.16.1
Mantis Mantis 0.17.4a
Mantis Mantis 0.17.5
Mantis Mantis 0.9
Mantis Mantis 0.9.1
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.5
Mantis Mantis 0.15.12
Mantis Mantis 0.15.2
Mantis Mantis 0.15.9
Mantis Mantis 0.16
Mantis Mantis 0.17.3
Mantis Mantis 0.17.4
NA
CVE-2004-2666
Mantis prior to 20041016 provides a complete Issue History (Bug History) in the web interface regardless of view_history_threshold, which allows remote malicious users to obtain sensitive information (private bug details) by visiting a bug's web page.
Mantis Mantis 0.10
Mantis Mantis 0.10.1
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
Mantis Mantis 0.15
Mantis Mantis 0.15.1
Mantis Mantis 0.17
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.17.3
Mantis Mantis 0.18a1
Mantis Mantis 0.19
Mantis Mantis 0.11
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.6
Mantis Mantis 0.15.10
Mantis Mantis 0.15.12
Mantis Mantis 0.15.8
Mantis Mantis 0.16
Mantis Mantis 0.17.4a
Mantis Mantis 0.18
NA
CVE-2004-1734
PHP remote file inclusion vulnerability in Mantis 0.19.0a allows remote malicious users to execute arbitrary PHP code by modifying the (1) t_core_path parameter to bug_api.php or (2) t_core_dir parameter to relationship_api.php to reference a URL on a remote web server that conta...
Mantis Mantis 0.19.0a
NA
CVE-2004-1731
signup_page.php in Mantis bugtracker allows remote malicious users to send e-mail bombs by creating multiple users and providing the same e-mail address.
Mantis Mantis 0.12
Mantis Mantis 0.13
Mantis Mantis 0.14.5
Mantis Mantis 0.14.6
Mantis Mantis 0.15.2
Mantis Mantis 0.15.3
Mantis Mantis 0.16
Mantis Mantis 0.16.0
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.17.5
Mantis Mantis 0.19.0a
Mantis Mantis 0.9
Mantis Mantis 0.11
Mantis Mantis 0.11.1
Mantis Mantis 0.14.3
Mantis Mantis 0.14.4
Mantis Mantis 0.15.11
Mantis Mantis 0.15.12
Mantis Mantis 0.15.8
Mantis Mantis 0.15.9
Mantis Mantis 0.17.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »