Vulnerabilities > Mantisbt > Source Integration > 1.5.4

DATE CVE VULNERABILITY TITLE RISK
2021-01-18 CVE-2020-36192 Unspecified vulnerability in Mantisbt Source Integration
An issue was discovered in the Source Integration plugin before 2.4.1 for MantisBT.
network
low complexity
mantisbt
5.0
5.0
2020-02-13 CVE-2020-8981 Cross-site Scripting vulnerability in Mantisbt Source Integration
A cross-site scripting (XSS) vulnerability was discovered in the Source Integration plugin before 1.6.2 and 2.x before 2.3.1 for MantisBT.
network
mantisbt CWE-79
4.3
4.3
2018-09-02 CVE-2018-16362 Cross-site Scripting vulnerability in Mantisbt Source Integration
An issue was discovered in the Source Integration plugin before 1.5.9 and 2.x before 2.1.5 for MantisBT.
network
mantisbt CWE-79
4.3
4.3
2017-03-17 CVE-2017-6958 Cross-site Scripting vulnerability in Mantisbt Source Integration
An XSS vulnerability in the MantisBT Source Integration Plugin (before 2.0.2) search result page allows an attacker to inject arbitrary HTML or JavaScript (if MantisBT's CSP settings permit it) by crafting any valid parameter.
network
mantisbt CWE-79
4.3
4.3