David Hicks

4 exploits Active since Sep 2011
CVE-2011-2938 WRITEUP WRITEUP
MantisBT < 1.2.7 - Cross-Site Scripting via Project ID Parameter
Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow remote attackers to inject arbitrary web script or HTML via a parameter, as demonstrated by the project_id parameter to search.php.
CVE-2011-3357 WRITEUP WRITEUP
MantisBT < 1.2.8 - Remote File Inclusion via Action Parameter
Directory traversal vulnerability in bug_actiongroup_ext_page.php in MantisBT before 1.2.8 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the action parameter, related to bug_actiongroup_page.php.
CVE-2011-3578 WRITEUP WRITEUP
MantisBT < 1.2.8 - Cross-Site Scripting via Action Parameter
Cross-site scripting (XSS) vulnerability in bug_actiongroup_ext_page.php in MantisBT before 1.2.8 allows remote attackers to inject arbitrary web script or HTML via the action parameter, related to bug_actiongroup_page.php, a different vulnerability than CVE-2011-3357.
CVE-2012-2691 WRITEUP WRITEUP
MantisBT <1.2.11 - Privilege Escalation
The mc_issue_note_update function in the SOAP API in MantisBT before 1.2.11 does not properly check privileges, which allows remote attackers with bug reporting privileges to edit arbitrary bugnotes via a SOAP request.