Vulnerabilities > Mantis > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-07-27 | CVE-2008-3331 | Cross-Site Scripting vulnerability in Mantis Cross-site scripting (XSS) vulnerability in return_dynamic_filters.php in Mantis before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the filter_target parameter. | 3.5 |
| 2003-08-07 | CVE-2003-0499 | Local Security vulnerability in Mantis 0.17.5 Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations. | 3.6 |