MantisBT 'upgrade_unattended.php' Local File Include and Cross Site Scripting Vulnerabilities
|
Bugtraq ID:
|
45399
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2010-4348
CVE-2010-4349
CVE-2010-4350
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Dec 15 2010 12:00AM
|
|
Updated:
|
Dec 31 2010 08:33PM
|
|
Credit:
|
LiquidWorm
|
|
Vulnerable:
|
Red Hat Fedora 14
Red Hat Fedora 13
Mantisbt Mantisbt 1.2.3
|
|
|
|
Not Vulnerable:
|
Mantisbt Mantisbt 1.2.4
|
|
