CVE-2005-3091 (GCVE-0-2005-3091)
Vulnerability from cvelistv5
Published
2005-09-28 04:00
Modified
2024-08-07 23:01
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp".
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T23:01:58.169Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-905",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2005/dsa-905"
},
{
"name": "16506",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/16506"
},
{
"name": "17654",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/17654"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mantisbt.org/changelog.php"
},
{
"name": "15227",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/15227"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2005-08-22T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 \"thraxisp\"."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2005-11-24T10:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "DSA-905",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2005/dsa-905"
},
{
"name": "16506",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/16506"
},
{
"name": "17654",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/17654"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mantisbt.org/changelog.php"
},
{
"name": "15227",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/15227"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2005-3091",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 \"thraxisp\"."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-905",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2005/dsa-905"
},
{
"name": "16506",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/16506"
},
{
"name": "17654",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/17654"
},
{
"name": "http://www.mantisbt.org/changelog.php",
"refsource": "CONFIRM",
"url": "http://www.mantisbt.org/changelog.php"
},
{
"name": "15227",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/15227"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2005-3091",
"datePublished": "2005-09-28T04:00:00",
"dateReserved": "2005-09-28T00:00:00",
"dateUpdated": "2024-08-07T23:01:58.169Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2005-3091\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2005-09-28T22:03:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 \\\"thraxisp\\\".\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B5E88349-E374-4AE9-9C4E-9599C1448D21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A21FF02F-982C-429F-A14D-D6E18058DD61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99FB3D29-644D-4E5F-875D-C87CCE3EF95C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5173B32-1099-47C9-996B-56DB29456BB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6CA26FD-9C45-4628-82B7-E37E3EA3E2A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B419B788-ADDD-4C0A-8E02-CBB58FD21938\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C7C8B5A-A630-4EDD-A6E8-27D2E1139CF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E387645-BC7A-4EA5-AE9E-A3C66994391B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.13.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C80575A3-87E7-40BC-9BCB-E12BB7938A77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6D8FD23-C9A3-40AB-B3ED-86739BA8A362\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04989B5F-30B2-43A0-A061-BF43EEA8756C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC7C781D-F5D1-4C63-B6E3-230DEC80104E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0755FA0-2365-42B4-8E42-214D5BAD71A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35248DDA-D37D-4D72-9FF8-6813BA4C87BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A67C54F4-4155-43DA-8E07-579249759989\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DE7BEF1-1522-4666-B6B1-36A308FBC0A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C376D216-914A-4D96-8603-C6861B3E2857\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF0636CA-49A5-4463-B22B-6C5E1E2D44AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3A07B4C-CE12-4381-BFE4-CE79411F5069\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"065C222C-638F-4303-BE6A-7FED59E21FB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB502B29-FBC5-4984-A735-AA0B6DF4A58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F759138-7079-471F-B30D-ED62351CFCB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DF83421-973D-4AC9-BDA3-4161B9CF2D91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1633BF3C-89C2-4BEF-9F56-6F19984D3CA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"084BD5F4-37F8-4913-8045-769FD81F8C36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76B09948-A44C-47D8-A5EC-3873FF36F451\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89D72C1E-73E5-4F51-9D30-D28026939C57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9EDAA7A-DF0C-4D9E-9D30-0422E4801612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C469C66-B64B-49BD-9D1C-D15F0E9028EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C28223A1-359F-434C-BAAA-82A5F310FA44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF1F18B-AE36-48F3-B784-5C97B3F2535E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F073B8A1-3339-4BF2-B8D1-F6BA5CF9695A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.16.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DAFD163-7FE7-48FB-8860-7B00B0FFA628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03A0C36A-83DF-4E67-BA82-0ACE4D50C7D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53520AA0-E5AB-450A-9D95-E075B552D2E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8462CB86-30B1-43D8-B306-271709423DB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"131A96BB-EF2E-4AE2-9334-91CA96222BA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17DC6205-7016-40C3-921A-B5AEC8513CCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"721A536A-9626-4BD7-B84A-E3C4074F1217\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.4a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D77F95A-0059-4442-8D9D-AA7F101FBBE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89786096-AE1B-491B-8284-DBCC2F6112F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70450FAB-7886-418E-B471-8F16A68F9658\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B4CFE80-223F-45DA-A9FB-03474F61E027\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B29FF305-E773-497E-9C47-7D87383F1440\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8724300D-CBDC-4C66-BF78-038F838C06DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7283A58-EE8E-493F-8E51-C97FF87ECA16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3CF3162-EAF8-438C-891A-FD13ECF6D6A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E42F3A0-5FDB-4053-9EA5-D19B7061CDE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"101BF6DC-0F73-41E0-A0EE-BA1EA7397423\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCC458D9-12B1-4CF1-980E-BC86E874BBA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5419E3AC-4215-4584-9538-AF790DC9BD5F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.0_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3C48B8F-633E-4D69-A174-26C19829DE98\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.0a1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DD259C18-7111-45C9-B6C3-6A5F29998146\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.0a2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CBA3B4B-D7E6-4555-969F-66217ACDACDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38BFDCFA-00C8-4B6A-B758-8FD15A122CA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6770FDC6-792D-49B2-942B-282F9012D0BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:1.0.0a1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"730BE023-C283-4775-915C-79817723917A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:1.0.0a2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"337E18A7-07A3-456D-868A-2002F96D7A2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:1.0.0a3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84B09B6D-EE4D-4241-B3EF-CBCB03A7F579\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/16506\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/17654\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2005/dsa-905\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mantisbt.org/changelog.php\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/15227\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/16506\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17654\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2005/dsa-905\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mantisbt.org/changelog.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/15227\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…