0006510: Port: Additional XSS Vulnerabilities in Filter - MantisBT

ID	Project	Category	View Status	Date Submitted	Last Update

0006510	mantisbt	security	public	2005-12-17 21:29	2006-10-09 11:55

Reporter	thraxisp	Assigned To	thraxisp
Priority	normal	Severity	minor	Reproducibility	always
Status	closed	Resolution	fixed
Product Version	git trunk
Fixed in Version	1.1.0a1

Summary	0006510: Port: Additional XSS Vulnerabilities in Filter
Description	Some XSS vulnerabilities in the filter were missed in the last patch. GET: ?type=1&highlight_changed=[XSS] GET: ?type=1&relationship_type=[XSS] GET: ?type=1&relationship_bug=[XSS] Originally reported by Thomas Waldegger thomas.waldegger@morph3us.org
Tags	No tags attached.

child of	0006508	closed	thraxisp	Additional XSS Vulnerabilities in Filter
child of	0005460	closed	vboctor	Critical Issues to Fix for Mantis 1.0.0 Release

thraxisp 2005-12-18 09:29 reporter ~0011814	Fixed in CVS. view_all_set.php -> 1.60 core/filter_api.php -> 1.131