what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

MantisBT Add Category Script Insertion: Posted Aug 6, 2010; Site secunia.com; Secunia Research has discovered a vulnerability in MantisBT, which can be exploited by malicious users to conduct script insertion attacks. Input passed via the "name" parameter to manage_proj_cat_add.php when creating a project category is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed. Successful exploitation requires "manager" permissions. Version 1.2.2 is affected.; tags | advisory, arbitrary, php; advisories | CVE-2010-2574; SHA-256 | 46030b6db921b875dabdcc45a59ef647e23e06d317424a1dae84bda6eecc94b4; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 194 files
Ubuntu 67 files
Debian 24 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
malvuln 4 files
Ersin Erenler 4 files
E1.Coders 4 files

Recent News

Scammers Offer Cash To Phone Carrier Staff To Swap SIM Cards: Posted Apr 17, 2024; tags | headline, phone, cybercrime, fraud, password; Favorite | View

Google Location Tracking Deal Could Be Derailed By Politics: Posted Apr 16, 2024; tags | headline, government, privacy, google, spyware; Favorite | View

Cryptojacker Arrested For Defrauding Cloud Providers Of $3.5 Million: Posted Apr 16, 2024; tags | headline, hacker, cybercrime, fraud, cryptography; Favorite | View

Delinea Scrambles To Patch Critical Flaw After Ignoring Researcher: Posted Apr 16, 2024; tags | headline, hacker, flaw, patch; Favorite | View

AI Watchdog Defends Against New LLM Jailbreak Method: Posted Apr 16, 2024; tags | headline, hacker, microsoft, flaw; Favorite | View

Juniper Networks Publishes Dozens Of New Security Advisories: Posted Apr 15, 2024; tags | headline, flaw, juniper; Favorite | View

Ransomware Group Claims Theft Of Data From Chipmaker Nexperia: Posted Apr 15, 2024; tags | headline, hacker, malware, data loss, cryptography; Favorite | View

Palo Alto Networks Releases Fixes For Firewall Zero-Day As Attribution Attempts Emerge: Posted Apr 15, 2024; tags | headline, flaw, patch, zero day; Favorite | View

Roku Makes 2FA Mandatory For All After Nearly 600k Accounts Pwned: Posted Apr 15, 2024; tags | headline, hacker, data loss, flaw, password; Favorite | View

Delinea Secret Server Customers Should Apply Latest Patches: Posted Apr 15, 2024; tags | headline, flaw, patch; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec