Multiple cross-site scripting (XSS) vulnerabilities in view_all_set.php in Mantis 1.0.1, 1.0.0rc5, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) start_day, (2) start_year, and (3) start_month parameters.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T17:19:48.700Z
Reserved: 2006-04-02T00:00:00
Link: CVE-2006-1577

No data.

Status : Deferred
Published: 2006-04-02T21:04:00.000
Modified: 2025-04-03T01:03:51.193
Link: CVE-2006-1577

No data.