CVE-2010-4348

Mantisbt < 1.2.3 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

Exploits (1)

exploitdb WORKING POC

webappsphp

https://www.exploit-db.com/exploits/15735

View Code ZIP pw:eip

References (13)

[Exploit, Patch] http://openwall.com/lists/oss-security/2010/12/15/4

[Exploit, Patch] http://openwall.com/lists/oss-security/2010/12/16/1

[Third Party Advisory] http://secunia.com/advisories/42772

[Third Party Advisory] http://secunia.com/advisories/51199

[Various Sources] http://www.mantisbt.org/blog/?p=123

[Various Sources] http://www.mantisbt.org/bugs/changelog_page.php?version_id=112

[Various Sources] http://www.mantisbt.org/bugs/view.php?id=12607

[Third Party Advisory] http://www.vupen.com/english/advisories/2011/0002

[Exploit, Patch] http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4983.php

[Exploit, Patch] https://bugzilla.redhat.com/show_bug.cgi?id=663230

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html

[Mailing List, Third Party Advisory] http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201211-01.xml

Scores

EPSS 0.1086

EPSS Percentile 93.4%

Details

CWE

CWE-79

Status published

Products (33)

mantisbt/mantisbt 0.18.0

mantisbt/mantisbt 0.19.0 (2 CPE variants)

mantisbt/mantisbt 0.19.0a1

mantisbt/mantisbt 0.19.0a2

mantisbt/mantisbt 0.19.1

mantisbt/mantisbt 0.19.2

mantisbt/mantisbt 0.19.3

mantisbt/mantisbt 0.19.4

mantisbt/mantisbt 0.19.5

mantisbt/mantisbt 1.0.0 (6 CPE variants)

... and 23 more

Published Jan 03, 2011

Tracked Since Feb 18, 2026