Lucene search
Ubuntu.comUB:CVE-2010-4348HistoryJan 03, 2011 - 12:00 a.m.
CVE-2010-4348
2011-01-0300:00:00
ubuntu.com
ubuntu.com
9
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.007
Percentile
80.2%
Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in
MantisBT before 1.2.4 allows remote attackers to inject arbitrary web
script or HTML via the db_type parameter, related to an unsafe call by
MantisBT to a function in the ADOdb Library for PHP.
Related
cve
cve
CVE-2010-4348
2011-01-03 20:00:42
cvelist
cvelist
CVE-2010-4348
2011-01-03 19:26:00
prion
prion
Cross site scripting
2011-01-03 20:00:00
nvd
nvd
CVE-2010-4348
2011-01-03 20:00:42
exploitdb
exploitdb
openvas
openvas
MantisBT Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT < 1.2.4 Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT <= 1.2.3 (db_type) Local File Inclusion Vulnerability
2010-12-15 00:00:00
nessus
nessus
Fedora 13 : mantis-1.1.8-5.fc13 (2010-19070)
2011-01-03 00:00:00
Fedora 14 : mantis-1.1.8-5.fc14 (2010-19078)
2011-01-03 00:00:00
GLSA-201211-01 : MantisBT: Multiple vulnerabilities
2012-11-09 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: mantis-1.1.8-5.fc14
2010-12-31 20:59:00
[SECURITY] Fedora 13 Update: mantis-1.1.8-5.fc13
2010-12-31 20:57:24
gentoo
gentoo
MantisBT: Multiple vulnerabilities
2012-11-08 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.007
Percentile
80.2%
Related for UB:CVE-2010-4348