Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis prior to 1.0 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. An original vendor bug report is referenced, but not accessible to the general public.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mantis mantis 0.17.5 |
||
mantis mantis 0.18 |
||
mantis mantis 0.18.0_rc1 |
||
mantis mantis 0.19.0 |
||
mantis mantis 0.19.0_rc1 |
||
mantis mantis 0.19.4 |
||
mantis mantis 1.0.0_rc1 |
||
mantis mantis 0.17.4 |
||
mantis mantis 0.17.4a |
||
mantis mantis 0.18.3 |
||
mantis mantis 0.18a1 |
||
mantis mantis 0.19.2 |
||
mantis mantis 0.19.3 |
||
mantis mantis 1.0.0a2 |
||
mantis mantis 1.0.0a3 |
||
mantis mantis 0.17.1 |
||
mantis mantis 0.18.0a2 |
||
mantis mantis 0.18.0a3 |
||
mantis mantis 0.19.0a |
||
mantis mantis 0.19.0a1 |
||
mantis mantis 1.0.0_rc2 |
||
mantis mantis 1.0.0_rc3 |
||
mantis mantis 0.17.2 |
||
mantis mantis 0.17.3 |
||
mantis mantis 0.18.0a4 |
||
mantis mantis 0.18.2 |
||
mantis mantis 0.19.0a2 |
||
mantis mantis 0.19.1 |
||
mantis mantis 1.0.0_rc4 |
||
mantis mantis 1.0.0a1 |
Vulmon