FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mantis -- multiple vulnerabilities

Affected packages
mantis < 2.15.0

Details

VuXML ID 0822a4cf-9318-11e8-8d88-00e04c1ea73d
Discovery 2018-07-13
Entry 2018-07-29

mantis reports:

Teun Beijers reported a cross-site scripting (XSS) vulnerability in the Edit Filter page which allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name. Prevent the attack by sanitizing the filter name before display.

Ömer Cıtak, Security Researcher at Netsparker, reported this vulnerability, allowing remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO on view_filters_page.php. Prevent the attack by sanitizing the output of $_SERVER['PHP_SELF'] before display.

References

CVE Name CVE-2018-13066
CVE Name CVE-2018-14504
URL https://github.com/mantisbt/mantisbt/commit/4efac90ed89a5c009108b641e2e95683791a165a
URL https://github.com/mantisbt/mantisbt/commit/8b5fa243dbf04344a55fe880135ec149fc1f439f