Mantis 'view.php' HTML Injection Vulnerability

Bugtraq ID:	27045
Class:	Input Validation Error
CVE:	CVE-2007-6611
Remote:	Yes
Local:	No
Published:	Dec 19 2007 12:00AM
Updated:	Mar 03 2008 11:02PM
Credit:	seiji is credited with the discovery of this issue.
Vulnerable:	Red Hat Fedora 8 Red Hat Fedora 7 Mantis Mantis 1.0.1 Mantis Mantis 1.0 .0RC4 Mantis Mantis 1.0 .0RC3 Mantis Mantis 1.0 .0rc2 Mantis Mantis 1.0 .0rc1 Mantis Mantis 1.0 .0a3 Mantis Mantis 1.0 .0a2 Mantis Mantis 1.0 .0a1 Mantis Mantis 1.0 Mantis Mantis 1.1.0a2 Mantis Mantis 1.0.0 RC5 Gentoo www-apps/mantisbt 1.0.8 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha

Not Vulnerable:	Mantis Mantis 1.1