Exposição de MantisBT
Issue trackers17
score de exposição
6
sites usam
0
em exploração
1
críticos
CVEs
35 resultadosCVE-2013-1931—A cross-site scripting (XSS) vulnerability in MantisBT 1.2.14 allows remote attackers to inject arbitrary web script or HTML via a version, EPSS 2.3%CVE-2013-1930—MantisBT 1.2.12 before 1.2.15 allows authenticated users to by the workflow restriction and close issues.EPSS 1.2%CVE-2024-34077HIGHMantisBT user account takeover in the signup/reset password processEPSS 1.2%CVE-2013-1932—A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.13 allows remote authentEPSS 1.0%CVE-2024-23830HIGHMantisBT Host Header Injection vulnerabilityEPSS 1.0%CVE-2013-1934—A cross-site scripting (XSS) vulnerability in the configuration report page (adm_config_report.php) in MantisBT 1.2.0rc1 before 1.2.14 allowEPSS 0.9%CVE-2024-34080MEDIUMMantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.7%CVE-2024-34081MEDIUMMantisBT Cross-site Scripting vulnerabilityEPSS 0.6%CVE-2023-22476MEDIUMMantisBT: Exposure of Private issues' summary to unauthorized usersEPSS 0.6%CVE-2023-44394MEDIUMDisclosure of project names to unauthorized users in MantisBTEPSS 0.6%CVE-2024-45792MEDIUMMantisBT vulnerable to information disclosure with user profilesEPSS 0.5%CVE-2026-40597HIGHMantisBT has a Content Security Policy bypass via attachmentsEPSS 0.5%CVE-2026-40598MEDIUMMantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update PageEPSS 0.4%CVE-2026-34463HIGHMantisBT has Stored HTML Injection/XSS via Clone Issue FormEPSS 0.4%CVE-2026-34390MEDIUMMantisBT: Privilege Escalation from Manager to AdministratorEPSS 0.4%CVE-2026-40596HIGHMantisBT is vulnerable to XSS and potential account takeover via user font family preference updateEPSS 0.4%CVE-2026-40607HIGHMantisBT is Vulnerable to Stored XSS Through its Saved-Filter Owner ColumnEPSS 0.4%CVE-2026-30849CRITICALMantisBT SOAP API has an authentication bypass vulnerability on MySQLEPSS 0.4%CVE-2026-34970MEDIUMMantisBT Bugnote Revision Page Leaks Private Issue Metadata After Issue Access Is RevokedEPSS 0.4%CVE-2026-34579MEDIUMMantisBT has an authorization bypass via private issue monitoringEPSS 0.4%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →