[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FD] Reflected Cross-site Scripting in Mantis 2.11.1

To: Daniel Bishtawi <daniel@xxxxxxxxxxxxxx>
Subject: Re: [FD] Reflected Cross-site Scripting in Mantis 2.11.1
From: Henri Salo <henri@xxxxxxx>
Date: Wed, 9 Jan 2019 11:11:05 +0200

On Tue, Jan 08, 2019 at 11:42:59AM +0100, Daniel Bishtawi wrote:
> Status: Fixed
> CVE-ID: CVE-2018-13055

Fixed in 2.15.1

https://mantisbt.org/blog/archives/mantisbt/602
https://mantisbt.org/bugs/view.php?id=24580
http://github.com/mantisbt/mantisbt/commit/4efac90ed89a5c009108b641e2e95683791a165a

Is this correct?

-- 
Henri Salo

Attachment: signature.asc
Description: PGP signature

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

References:
- [FD] Reflected Cross-site Scripting in Mantis 2.11.1
  - From: Daniel Bishtawi

Prev by Date: Re: [FD] Reflected Cross-site Scripting Vulnerability in CubeCart 6.2.2
Next by Date: [FD] [CVE-2018-10091] Stored XSS vulnerabilities in AudioCode IP phones
Previous by thread: [FD] Reflected Cross-site Scripting in Mantis 2.11.1
Next by thread: [FD] Multiple Cross-site Scripting Vulnerabilities in ZenPhoto 1.4.14
Index(es):
- Date
- Thread