CVE-2008-0404

Published: 23 January 2008

Cross-site scripting (XSS) vulnerability in Mantis before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "Most active bugs" summary.

Notes

per Debian-- code introduced in 1.1 series

Status

References

• https://www.cve.org/CVERecord?id=CVE-2008-0404
• NVD
• Launchpad
• Debian