Back to search
CVE-2014-9701
Published: Aug 9, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote attackers to inject arbitrary web script or HTML via the url parameter to permalink_page.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.mantisbt.org/bugs/view.php?id=19493
x_refsource_CONFIRM
[oss-security] 20150314 Re: CVE Request: XSS issue in MantisBT permalink_page.php
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=1202885
x_refsource_CONFIRM
https://www.mantisbt.org/bugs/view.php?id=17362#c40613
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now