mantisbt/mantisbt vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2017-6973Mediummantisbt/mantisbt: MantisBT XSS via adm_config_report.php's action parameterCVE-2017-7309Mediummantisbt/mantisbt: MantisBT vulnerable to XSS through config_option parameter in adm_config_report.phpCVE-2017-7241Mediummantisbt/mantisbt: MantisBT XSS via move_attachments_page.phpCVE-2017-12062Mediummantisbt/mantisbt: MantisBT vulnerable to XSS via unsanitized filter field in manage_user_page.phpCVE-2018-14504Mediummantisbt/mantisbt: MantisBT allows XSS on the Edit Filter page via crafted filter nameCVE-2018-13055Mediummantisbt/mantisbt: MantisBT allows XSS via View Filters page CVE-2010-2574Lowmantisbt/mantisbt: MantisBT Cross-site Scripting vulnerabilityCVE-2018-17782Mediummantisbt/mantisbt: MantisBT allows XSS via the Manage Filter page CVE-2018-17783Mediummantisbt/mantisbt: MantisBT allows XSS via Edit Filter page CVE-2017-7615Highmantisbt/mantisbt: MantisBT allows arbitrary password resetCVE-2017-12061Mediummantisbt/mantisbt: MantisBT XSS allows unsanitized input via admin/install.phpCVE-2022-28508Mediummantisbt/mantisbt: MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.phpCVE-2009-20001Highmantisbt/mantisbt: MantisBT Insufficient Session Expiration cookie string not reset after logoutCVE-2021-43257Highmantisbt/mantisbt: MantisBT CSV Injection unprivileged user access in csv_export.phpCVE-2022-26144Mediummantisbt/mantisbt: MantisBT vulnerable to XSS due to improper escape in manage_plugin_page.php and…

Stop the waste.
Protect your environment with Kodem.