Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2005-3090

Published: 28/09/2005 Updated: 18/10/2016
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Mantis

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in Mantis 0.19.0a1 up to and including 1.0.0a3 allows remote malicious users to inject arbitrary web script or HTML via the summary of the bug, which is not quoted when view_all_bug_page.php is used to delete the bug, as identified by bug#0006002, a different vulnerability than CVE-2005-2557.

Vulnerable Product Search on Vulmon Subscribe to Product

mantis mantis 0.19.0

mantis mantis 0.19.0_rc1

mantis mantis 1.0.0a3

mantis mantis 0.19.0a1

mantis mantis 0.19.0a2

mantis mantis 0.19.1

mantis mantis 0.19.2

mantis mantis 1.0.0a1

mantis mantis 1.0.0a2

References

NVD-CWE-Otherhttp://www.debian.org/security/2005/dsa-778http://marc.info/?l=bugtraq&m=112786017426276&w=2https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook