Multiple Cross-Site Scripting (XSS) Vulnerabilities in MantisBT filter_api.php

Multiple Cross-Site Scripting (XSS) Vulnerabilities in MantisBT filter_api.php

CVE-2011-2938 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow remote attackers to inject arbitrary web script or HTML via a parameter, as demonstrated by the project_id parameter to search.php.

Learn more about our Web App Pen Testing.