Author: Cyberthreat Blog

CVE-2017-7361

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.

CVE-2017-6973

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

A cross-site scripting (XSS) vulnerability in the MantisBT Configuration Report page (adm_config_report.php) allows remote attackers to inject arbitrary code through a crafted ‘action’ parameter. This is fixed in...

CVE-2017-7241

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

A cross-site scripting (XSS) vulnerability in the MantisBT Move Attachments page (move_attachments_page.php, part of admin tools) allows remote attackers to inject arbitrary code through a crafted ‘type’ parameter,...

CVE-2017-7359

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack.

CVE-2017-7362

Posted by Cyberthreat Blog | Mar 30, 2017 | CVE Notifications |

Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.

1
…
28,057
28,058
28,059
28,060
28,061