Joined: 12 May 2004
|Posted: Sat Sep 24, 2005 9:15 am Post subject: [ GLSA 200509-16 ] Mantis: XSS and SQL injection vulnerabili
|Gentoo Linux Security Advisory
Title: Mantis: XSS and SQL injection vulnerabilities (GLSA 200509-16)
Date: September 24, 2005
Mantis is affected by an SQL injection and several cross-site scripting (XSS) vulnerabilities.
Mantis is a web-based bugtracking system written in PHP.
Vulnerable: < 0.19.2
Unaffected: >= 0.19.2
Architectures: All supported architectures
Mantis fails to properly sanitize untrusted input before using it. This leads to an SQL injection and several cross-site scripting vulnerabilities.
An attacker could possibly use the SQL injection vulnerability to access or modify information from the Mantis database. Furthermore the cross-site scripting issues give an attacker the ability to inject and execute malicious script code or to steal cookie-based authentication credentials, potentially compromising the victim's browser.
There is no known workaround at this time.
All Mantis users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=www-apps/mantisbt-0.19.2"
Secunia Advisory SA16506
Last edited by GLSA on Sun May 07, 2006 4:58 pm; edited 1 time in total