Security Advisory

CVE-2022-28508

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-04 13:50:55

Last updated 2024-08-03 05:56:15

Assigner mitre

State PUBLISHED

Description

An XSS issue was discovered in browser_search_plugin.php in MantisBT before 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.

← Browse all CVEs View on cve.org ↗