Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0404

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-0404
Last Modified 07 Mar 2011 10:04:39
Published 23 Jan 2008 07:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0404

Summary

Cross-site scripting (XSS) vulnerability in Mantis before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "Most active bugs" summary.

Vulnerable Systems

Application

  • Mantis 0.10

  • Mantis 0.10.1

  • Mantis 0.10.2

  • Mantis 0.11

  • Mantis 0.11.1

  • Mantis 0.12

  • Mantis 0.13

  • Mantis 0.13.1

  • Mantis 0.14

  • Mantis 0.14.1

  • Mantis 0.14.2

  • Mantis 0.14.3

  • Mantis 0.14.4

  • Mantis 0.14.5

  • Mantis 0.14.6

  • Mantis 0.14.7

  • Mantis 0.14.8

  • Mantis 0.15

  • Mantis 0.15.1

  • Mantis 0.15.10

  • Mantis 0.15.11

  • Mantis 0.15.12

  • Mantis 0.15.2

  • Mantis 0.15.3

  • Mantis 0.15.4

  • Mantis 0.15.5

  • Mantis 0.15.6

  • Mantis 0.15.7

  • Mantis 0.15.8

  • Mantis 0.15.9

  • Mantis 0.16

  • Mantis 0.16.0

  • Mantis 0.16.1

  • Mantis 0.17

  • Mantis 0.17.0

  • Mantis 0.17.1

  • Mantis 0.17.2

  • Mantis 0.17.3

  • Mantis 0.17.4

  • Mantis 0.17.4a

  • Mantis 0.17.5

  • Mantis 0.18

  • Mantis 0.18.0

  • Mantis 0.18.0 Rc1

  • Mantis 0.18.0a2

  • Mantis 0.18.0a3

  • Mantis 0.18.0a4

  • Mantis 0.18.2

  • Mantis 0.18.3

  • Mantis 0.18a1

  • Mantis 0.19.0

  • Mantis 0.19.0 Rc1

  • Mantis 0.19.0a

  • Mantis 0.19.0a1

  • Mantis 0.19.0a2

  • Mantis 0.19.1

  • Mantis 0.19.2

  • Mantis 0.19.3

  • Mantis 0.19.4

  • Mantis 0.9

  • Mantis 0.9.1

  • Mantis 1.0

  • Mantis 1.0.0 Rc1

  • Mantis 1.0.0 Rc2

  • Mantis 1.0.0 Rc3

  • Mantis 1.0.0 Rc4

  • Mantis 1.0.0a1

  • Mantis 1.0.0a2

  • Mantis 1.0.0a3

  • Mantis 1.0.1

  • Mantis 1.1

  • Mantis 1.1.0

  • Mantis 1.1.0a1


References

BID - 27367

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=569765

FEDORA - FEDORA-2008-0856

FEDORA - FEDORA-2008-0796

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=429552

XF - mantis-mostactive-xss(39801)

VUPEN - ADV-2008-0232

SECUNIA - 28591

SECUNIA - 28577


Last Updated: 27 May 2016 10:46:47