Posted by Popovici, Alejo (LATCO – Buenos Aires) on Jan 05
Mantis BugTracker 1.2.17 multiple security vulnerabilities.
******************************************************************************
– Affected Vendor: Mantis
– Affected System: BugTracker 1.2.17
– Vulnerabilities’ Status: Fixed
******************************************************************************
– Associated CWEs:
CWE-79: Failure to Preserve Web Page Structure (‘Cross-site Scripting’)
CWE-601: URL Redirection…