Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in the Source Integration plugin before 1.5.9 and 2.x before 2.1.5 for MantisBT. A cross-site scripting (XSS) vulnerability in the Manage Repository and Changesets List pages allows execution of arbitrary code (if CSP settings permit it) via repo_manage_page.php or list.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MantisBT Source Integration插件跨站脚本漏洞
Vulnerability Description
MantisBT是MantisBT团队的一套基于Web的开源缺陷跟踪系统。该系统以Web操作的形式提供项目管理及缺陷跟踪服务。Source Integration plugin是使用在其中的一个源代码控制集成插件。 MantisBT Source Integration插件1.5.9之前版本和2.1.5之前的2.x版本中的Manage Repository和Changesets List页面存在跨站脚本漏洞。远程攻击者可借助repo_manage_page.php文件或list.php文件利用该漏洞执行任
CVSS Information
N/A
Vulnerability Type
N/A