oss-sec mailing list archives
Re: CVE request: XSS in MantisBT
From: Damien Regad <dregad () mantisbt org>
Date: Mon, 16 Feb 2015 09:53:17 +0000 (UTC)
P Richards <paul@...> writes:
According to github https://github.com/mantisbt/mantisbt/commit/cabacdc2 the fix referenced for CVE-2014-8986 has never been tagged to a 1.2.x release.
It would help if you looked at the 1.2.x commit... http://github.com/mantisbt/mantisbt/commit/e326b73a $ git describe --contains e326b73a release-1.2.18~27
Current thread:
- CVE request: XSS in MantisBT Damien Regad (Feb 09)
- RE: CVE request: XSS in MantisBT P Richards (Feb 09)
- Re: CVE request: XSS in MantisBT Damien Regad (Feb 13)
- RE: Re: CVE request: XSS in MantisBT P Richards (Feb 13)
- Re: CVE request: XSS in MantisBT Damien Regad (Feb 16)
- RE: Re: CVE request: XSS in MantisBT P Richards (Feb 16)
- Re: CVE request: XSS in MantisBT Damien Regad (Feb 16)
- Re: CVE request: XSS in MantisBT Damien Regad (Feb 13)
- RE: CVE request: XSS in MantisBT P Richards (Feb 09)
- RE: CVE request: XSS in MantisBT P Richards (Feb 21)
- Re: CVE request: XSS in MantisBT cve-assign (Feb 21)