Multiple cross-site scripting (XSS) vulnerabilities in the view_filters_page.php filters script in Mantis 1.0.0rc3 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) view_type and (2) target_field parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mantis mantis 1.0.0_rc1 |
||
mantis mantis 1.0.0_rc2 |
||
mantis mantis 1.0.0_rc3 |
||
mantis mantis 1.0.0a1 |
||
mantis mantis 1.0.0a2 |
||
mantis mantis 1.0.0a3 |