View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0011933 | mantisbt | security | public | 2010-05-17 12:15 | 2010-07-29 10:45 |
| Reporter | dhx | Assigned To | dhx | ||
| Priority | urgent | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Product Version | 1.2.1 | ||||
| Target Version | 1.2.2 | Fixed in Version | 1.2.2 | ||
| Summary | 0011933: XSS via project_id_filter_target when selecting projects to filter by in advanced filter view | ||||
| Description | A project name containing malicious scripting code could be printed out the browser directly without sanitisation in the filter advanced view when selecting projects to filter by. Note that to exploit this bug, a user must have access to create/modify | ||||
| Tags | No tags attached. | ||||
|
MantisBT: master 9d5880bc 2010-05-17 12:16 Details Diff |
Fix 0011933: XSS via project_id_filter_target (filter advanced view) A project name containing malicious scripting code could be printed out the browser directly without sanitisation in the filter advanced view when selecting projects to filter by. Note that to exploit this bug, a user must have access to create/modify projects on a MantisBT installation. Normally these users are trusted (or are the system administrators of the MantisBT installation) so this attack vector is subsequently limited in severity. |
Affected Issues 0011933 |
|
| mod - core/filter_api.php | Diff File | ||
|
MantisBT: master-1.2.x c4b15746 2010-05-17 12:16 Details Diff |
Fix 0011933: XSS via project_id_filter_target (filter advanced view) A project name containing malicious scripting code could be printed out the browser directly without sanitisation in the filter advanced view when selecting projects to filter by. Note that to exploit this bug, a user must have access to create/modify projects on a MantisBT installation. Normally these users are trusted (or are the system administrators of the MantisBT installation) so this attack vector is subsequently limited in severity. |
Affected Issues 0011933 |
|
| mod - core/filter_api.php | Diff File | ||
