View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0011246 | mantisbt | security | public | 2009-12-01 04:31 | 2010-02-22 14:34 |
Reporter | dhx | Assigned To | dhx | ||
Priority | urgent | Severity | major | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Product Version | 1.2.0 | ||||
Target Version | 1.2.0 | Fixed in Version | 1.2.0 | ||
Summary | 0011246: XSS bug in category dropdown selector | ||||
Description | If a category name contains "<script>alert(42);</script>" then it'll result in a XSS vulnerability whenever a category dropdown list is printed. This applies to pages such as bug reporting, updating a bug, etc. | ||||
Tags | No tags attached. | ||||
MantisBT: master-1.2.x ccae795a 2009-12-01 04:32 Details Diff |
Fix 0011246: XSS bug in category dropdown selector If a category name contains "<script>alert(42);</script>" then it would result in a XSS vulnerability whenever a category dropdown list was printed. This applies to pages such as bug reporting, updating a bug, etc. |
Affected Issues 0011246 |
|
mod - core/print_api.php | Diff File | ||
MantisBT: master 98f63cf5 2009-12-01 04:32 Details Diff |
Fix 0011246: XSS bug in category dropdown selector If a category name contains "<script>alert(42);</script>" then it would result in a XSS vulnerability whenever a category dropdown list was printed. This applies to pages such as bug reporting, updating a bug, etc. |
Affected Issues 0011246 |
|
mod - core/print_api.php | Diff File |