What is the severity of CVE-2011-3358?

CVE-2011-3358 has been classified as a medium severity vulnerability due to its potential for cross-site scripting attacks.

How do I fix CVE-2011-3358?

To fix CVE-2011-3358, upgrade MantisBT to version 1.2.8 or later, which includes patches for these vulnerabilities.

What type of vulnerabilities are associated with CVE-2011-3358?

CVE-2011-3358 refers to multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary scripts.

Which versions of MantisBT are affected by CVE-2011-3358?

CVE-2011-3358 affects all MantisBT versions prior to 1.2.8, including versions from 0.19.3 to 1.2.6.

What parameters are involved in the CVE-2011-3358 vulnerability?

The CVE-2011-3358 vulnerability is related to the 'os', 'os_build', and 'platform' parameters in bug_report_page.php and bug_update_advanced_page.php.

Vulnerability/
CVE-2011-3358

medium

4.3

CWE

21/9/2011

6/8/2024

CVE-2011-3358: XSS

First published: Wed Sep 21 2011(Updated: )

Multiple cross-site scripting (XSS) vulnerabilities in MantisBT before 1.2.8 allow remote attackers to inject arbitrary web script or HTML via the (1) os, (2) os_build, or (3) platform parameter to (a) bug_report_page.php or (b) bug_update_advanced_page.php, related to use of the Projax library.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
MantisBT	<=1.2.7
MantisBT	=0.19.3
MantisBT	=0.19.4
MantisBT	=1.0.0
MantisBT	=1.0.1
MantisBT	=1.0.2
MantisBT	=1.0.3
MantisBT	=1.0.4
MantisBT	=1.0.5
MantisBT	=1.0.6
MantisBT	=1.0.7
MantisBT	=1.0.8
MantisBT	=1.1.0
MantisBT	=1.1.1
MantisBT	=1.1.2
MantisBT	=1.1.4
MantisBT	=1.1.5
MantisBT	=1.1.6
MantisBT	=1.1.7
MantisBT	=1.1.8
MantisBT	=1.2.0
MantisBT	=1.2.1
MantisBT	=1.2.2
MantisBT	=1.2.3
MantisBT	=1.2.4
MantisBT	=1.2.5
MantisBT	=1.2.6

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-3358?
CVE-2011-3358 has been classified as a medium severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2011-3358?
To fix CVE-2011-3358, upgrade MantisBT to version 1.2.8 or later, which includes patches for these vulnerabilities.
What type of vulnerabilities are associated with CVE-2011-3358?
CVE-2011-3358 refers to multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary scripts.
Which versions of MantisBT are affected by CVE-2011-3358?
CVE-2011-3358 affects all MantisBT versions prior to 1.2.8, including versions from 0.19.3 to 1.2.6.
What parameters are involved in the CVE-2011-3358 vulnerability?
The CVE-2011-3358 vulnerability is related to the 'os', 'os_build', and 'platform' parameters in bug_report_page.php and bug_update_advanced_page.php.

agent/references
agent/type
agent/softwarecombine
agent/remedy
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/mantisbt
canonical/mantisbt
version/mantisbt/1.2.7
version/mantisbt/0.19.3
version/mantisbt/0.19.4
version/mantisbt/1.0.0
version/mantisbt/1.0.1
version/mantisbt/1.0.2
version/mantisbt/1.0.3
version/mantisbt/1.0.4
version/mantisbt/1.0.5
version/mantisbt/1.0.6
version/mantisbt/1.0.7
version/mantisbt/1.0.8
version/mantisbt/1.1.0
version/mantisbt/1.1.1
version/mantisbt/1.1.2
version/mantisbt/1.1.4
version/mantisbt/1.1.5
version/mantisbt/1.1.6
version/mantisbt/1.1.7
version/mantisbt/1.1.8
version/mantisbt/1.2.0
version/mantisbt/1.2.1
version/mantisbt/1.2.2
version/mantisbt/1.2.3
version/mantisbt/1.2.4
version/mantisbt/1.2.5
version/mantisbt/1.2.6

Frequently Asked Questions

What is the severity of CVE-2011-3358?
CVE-2011-3358 has been classified as a medium severity vulnerability due to its potential for cross-site scripting attacks.
How do I fix CVE-2011-3358?
To fix CVE-2011-3358, upgrade MantisBT to version 1.2.8 or later, which includes patches for these vulnerabilities.
What type of vulnerabilities are associated with CVE-2011-3358?
CVE-2011-3358 refers to multiple cross-site scripting (XSS) vulnerabilities that allow remote attackers to inject arbitrary scripts.
Which versions of MantisBT are affected by CVE-2011-3358?
CVE-2011-3358 affects all MantisBT versions prior to 1.2.8, including versions from 0.19.3 to 1.2.6.
What parameters are involved in the CVE-2011-3358 vulnerability?
The CVE-2011-3358 vulnerability is related to the 'os', 'os_build', and 'platform' parameters in bug_report_page.php and bug_update_advanced_page.php.

CVE-2011-3358: XSS

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2011-3358?

How do I fix CVE-2011-3358?

What type of vulnerabilities are associated with CVE-2011-3358?

Which versions of MantisBT are affected by CVE-2011-3358?

What parameters are involved in the CVE-2011-3358 vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2011-3358?

How do I fix CVE-2011-3358?

What type of vulnerabilities are associated with CVE-2011-3358?

Which versions of MantisBT are affected by CVE-2011-3358?

What parameters are involved in the CVE-2011-3358 vulnerability?