MantisBT Multiple Local File Include and Cross Site Scripting Vulnerabilities

Bugtraq ID: 49448
Class: Input Validation Error
CVE: CVE-2011-3356
CVE-2011-3357
CVE-2011-3358
CVE-2011-3356
CVE-2011-3357
CVE-2011-3358
CVE-2011-3578
CVE-2011-3578
Remote: Yes
Local: No
Published: Sep 05 2011 12:00AM
Updated: Jul 24 2013 12:14PM
Credit: Paulino Calderon, Websec and High-Tech Bridge Security Research Lab
Vulnerable: Red Hat Fedora 16
Red Hat Fedora 15
Mantisbt Mantisbt 1.2.7
Mantisbt Mantisbt 1.2.6
Mantisbt Mantisbt 1.2.4
Mantisbt Mantisbt 1.2.3
Mantisbt Mantisbt 1.1.8
Mantisbt Mantisbt 1.1.7
Mantisbt Mantisbt 1.1.5
Mantisbt Mantisbt 1.1
Mantisbt Mantisbt 1.0.8
Mantisbt Mantisbt 1.0.7
Mantisbt Mantisbt 1.0.6
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 0.19.4
Mantisbt Mantisbt 0.19.3
Mantisbt Mantisbt 1.2.2
Mantisbt Mantisbt 1.2.1
Mantisbt Mantisbt 1.1.6
Mantisbt Mantisbt 1.1.4
Mantisbt Mantisbt 1.1.2
Mantisbt Mantisbt 1.1.1
Mantisbt Mantisbt 1.1.0
Mantisbt Mantisbt 1.0.5
Mantisbt Mantisbt 1.0.4
Mantisbt Mantisbt 1.0.3
Mantisbt Mantisbt 1.0.2
Mantisbt Mantisbt 1.0.1
Gentoo Linux
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Debian Linux 6.0 amd64
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Not Vulnerable: Mantisbt Mantisbt 1.2.8


 

Privacy Statement
Copyright 2010, SecurityFocus