PublicDate: 2005-09-28 22:03:00 UTC
Candidate: CVE-2005-3090
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3090
Description:
 Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in
 Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary
 web script or HTML via the summary of the bug, which is not quoted when
 view_all_bug_page.php is used to delete the bug, as identified by
 bug#0006002, a different vulnerability than CVE-2005-2557.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_mantis: released (0.19.4-2)
edgy_mantis: released (0.19.4-2)
feisty_mantis: released (0.19.4-2)
devel_mantis: released (0.19.4-2)
upstream_mantis: needs-triage