MantisBT: master-1.2.x 7df30a9e
Author | Committer | Branch | Timestamp | Parent |
---|---|---|---|---|
dhx | dhx | master-1.2.x | 2013-01-18 17:49 | master-1.2.x 610da6ec |
Affected Issues | 0015384: CVE-2013-1810 XSS vulnerability on summary page | |||
Changeset | Fix 0015384: summary.php XSS vulnerability in MantisBT 1.2.12 only Roland Becker (MantisBT Developer) discovered a XSS vulnerability A malicious MantisBT user holding privileged manager/administrator The severity of this issue is limited by the need to hold privileged Refer to previous commits 3ca8a164 and 6ec3f693 to trace back the origin |
|||
mod - core/summary_api.php | Diff File |