Cross-site scripting (XSS) vulnerability in MantisBT before 1.2.2 allows remote authenticated users to inject arbitrary web script or HTML via an HTML document with a .gif filename extension, related to inline attachments.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2010-09-07T16:30:00Z
Updated: 2010-09-07T16:30:00Z
Reserved: 2010-07-22T00:00:00Z
Link: CVE-2010-2802
JSON object: View
NVD Information
Status : Analyzed
Published: 2010-09-07T17:00:01.947
Modified: 2011-01-04T05:00:00.000
Link: CVE-2010-2802
JSON object: View
Redhat Information
No data.
CWE