First published: Fri Sep 02 2011(Updated: )
A local file inclusion/path traversal vulnerability and XSS flaw was found in the Mantis bug tracker version 1.2.7 [1],[2]. [1] <a href="https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_mantisbt.html">https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_mantisbt.html</a> [2] <a href="https://github.com/mantisbt/mantisbt/commit/a7eacc181185eff1dd7bd8ceaa34a91cf86cc298">https://github.com/mantisbt/mantisbt/commit/a7eacc181185eff1dd7bd8ceaa34a91cf86cc298</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Mantisbt Mantisbt | =0.19.4 | |
Mantisbt Mantisbt | =1.0.2 | |
Mantisbt Mantisbt | =1.2.2 | |
Mantisbt Mantisbt | =1.2.5 | |
Mantisbt Mantisbt | =0.19.3 | |
Mantisbt Mantisbt | =1.1.6 | |
Mantisbt Mantisbt | =1.2.0 | |
Mantisbt Mantisbt | =1.1.4 | |
Mantisbt Mantisbt | =1.0.3 | |
Mantisbt Mantisbt | =1.1.0 | |
Mantisbt Mantisbt | =1.1.5 | |
Mantisbt Mantisbt | =1.0.7 | |
Mantisbt Mantisbt | =1.2.3 | |
Mantisbt Mantisbt | =1.1.2 | |
Mantisbt Mantisbt | =1.0.1 | |
Mantisbt Mantisbt | =1.2.6 | |
Mantisbt Mantisbt | =1.0.0 | |
Mantisbt Mantisbt | <=1.2.7 | |
Mantisbt Mantisbt | =1.2.1 | |
Mantisbt Mantisbt | =1.0.4 | |
Mantisbt Mantisbt | =1.1.7 | |
Mantisbt Mantisbt | =1.0.5 | |
Mantisbt Mantisbt | =1.1.8 | |
Mantisbt Mantisbt | =1.2.4 | |
Mantisbt Mantisbt | =1.0.6 | |
Mantisbt Mantisbt | =1.0.8 | |
Mantisbt Mantisbt | =1.1.1 | |
redhat/mantis | <1.2.8 | 1.2.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.