Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in MantisBT 1.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the name parameter in an Add Category action.
Software | From | Fixed in |
---|---|---|
mantisbt / mantisbt | 1.2.2 | 1.2.2.x |