CVE-2009-2802 (mantisbt)

MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks.

View Full Alert

Related Posts

  • CVE-2009-2802

    MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks. View Full Alert

  • CVE-2009-3887

    ytnef has directory traversal View Full Alert

  • CVE-2009-3723

    asterisk allows calls on prohibited networks View Full Alert