Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-28508

Disclosure Date: May 04, 2022 (last updated February 23, 2025)
An XSS issue was discovered in browser_search_plugin.php in MantisBT before 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0