4.3

CVE-2006-0664

Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis before 1.0 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.  An original vendor bug report is referenced, but not accessible to the general public.

Data is provided by the National Vulnerability Database (NVD)
MantisMantis Version0.17.1
MantisMantis Version0.17.2
MantisMantis Version0.17.3
MantisMantis Version0.17.4
MantisMantis Version0.17.4a
MantisMantis Version0.17.5
MantisMantis Version0.18
MantisMantis Version0.18.0_rc1
MantisMantis Version0.18.0a2
MantisMantis Version0.18.0a3
MantisMantis Version0.18.0a4
MantisMantis Version0.18.2
MantisMantis Version0.18.3
MantisMantis Version0.18a1
MantisMantis Version0.19.0
MantisMantis Version0.19.0_rc1
MantisMantis Version0.19.0a
MantisMantis Version0.19.0a1
MantisMantis Version0.19.0a2
MantisMantis Version0.19.1
MantisMantis Version0.19.2
MantisMantis Version0.19.3
MantisMantis Version0.19.4
MantisMantis Version1.0.0_rc1
MantisMantis Version1.0.0_rc2
MantisMantis Version1.0.0_rc3
MantisMantis Version1.0.0_rc4
MantisMantis Version1.0.0a1
MantisMantis Version1.0.0a2
MantisMantis Version1.0.0a3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.43% 0.594
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N