MantisBT Cross Site Scripting and SQL Injection Vulnerabilities

Bugtraq ID:	49235
Class:	Input Validation Error
CVE:	CVE-2011-2938 CVE-2011-2938
Remote:	Yes
Local:	No
Published:	Aug 18 2011 12:00AM
Updated:	Sep 30 2011 09:30PM
Credit:	Net.Edit0r
Vulnerable:	Red Hat Fedora 16 Red Hat Fedora 15 Mantisbt Mantisbt 1.1.8 Mantisbt Mantisbt 1.1.7 Mantisbt Mantisbt 1.1.5 Mantisbt Mantisbt 1.1 Mantisbt Mantisbt 1.0.8 Mantisbt Mantisbt 1.0.7 Mantisbt Mantisbt 1.0.6 Mantisbt Mantisbt 1.0.2 Mantisbt Mantisbt 0.19.4 Mantisbt Mantisbt 0.19.3 Mantisbt Mantisbt 1.2.2 Mantisbt Mantisbt 1.2.1 Mantisbt Mantisbt 1.1.6 Mantisbt Mantisbt 1.1.4 Mantisbt Mantisbt 1.1.2 Mantisbt Mantisbt 1.1.1 Mantisbt Mantisbt 1.1.0 Mantisbt Mantisbt 1.0.5 Mantisbt Mantisbt 1.0.4 Mantisbt Mantisbt 1.0.3 Mantisbt Mantisbt 1.0.2 Mantisbt Mantisbt 1.0.1 jackdewey Link Library 5.0.8

Not Vulnerable: