CVE-2014-9269 in MantisBTinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in helper_api.php in MantisBT 1.1.0a1 through 1.2.x before 1.2.18, when Extended project browser is enabled, allows remote attackers to inject arbitrary web script or HTML via the project cookie.

Once again VulDB remains the best source for vulnerability data.

Réserver

04/12/2014

Divulgation

09/01/2015

Modérer

accepté

Entrée

VDB-73539

CPE

prêt

EPSS

0.01985

KEV

non

Activités

très faible

Sources

Might our Artificial Intelligence support you?

Check our Alexa App!