CVE-2022-28508
published 2022-05-04CVE-2022-28508: An XSS issue was discovered in browser_search_plugin.php in MantisBT before 2.25.2. Unescaped output of the return parameter allows an attacker to inject code…
PriorityP340medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
5.23%
91.5th percentile
An XSS issue was discovered in browser_search_plugin.php in MantisBT before 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mantisbt | mantisbt | < 2.25.2 | 2.25.2 |
| mantisbt | mantisbt | 0 – 2.25.2 | — |
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
ghsa·2022-05-05
CVE-2022-28508 [MEDIUM] CWE-79 MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
An XSS issue was discovered in browser_search_plugin.php in MantisBT up to and including 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.
OSV
MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
osv·2022-05-05
CVE-2022-28508 [MEDIUM] MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
An XSS issue was discovered in browser_search_plugin.php in MantisBT up to and including 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.
No detection rules found.
Nuclei
MantisBT < 2.25.2 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2022-28508 [MEDIUM] MantisBT < 2.25.2 - Cross-Site Scripting
MantisBT alert(document.domain)"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "alert(document.domain)"
- ""
condition: and
- type: word
part: content_type
words:
- "application/opensearchdescription"
- type: status
status:
- 200
# digest: 490a0046304402203c77912c6ea972b95e224b0015a4ad98d156e93d20a2faf2a5de8f0c18916b8a02204837d77a32922b694b5ed86187139ba8b9f19af4ded4379c0424285e454d0cbd:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
https://github.com/YavuzSahbaz/CVE-2022-28508/blob/main/MantisBT%202.25.2%20XSS%20vulnurabilityhttps://mantisbt.org/https://sourceforge.net/projects/mantisbt/https://github.com/YavuzSahbaz/CVE-2022-28508/blob/main/MantisBT%202.25.2%20XSS%20vulnurabilityhttps://mantisbt.org/https://sourceforge.net/projects/mantisbt/
2022-05-04
Published