Vulnerability Description
An issue was discovered in MantisBT before 2.24.3. When editing an Issue in a Project where a Custom Field with a crafted Regular Expression property is used, improper escaping of the corresponding form input's pattern attribute allows HTML injection and, if CSP settings permit, execution of arbitrary JavaScript.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mantisbt | Mantisbt | < 2.24.3 |
Related Weaknesses (CWE)
References
- http://github.com/mantisbt/mantisbt/commit/221cf323f16a9738a5b27aaba94758f11281dPatchThird Party Advisory
- https://mantisbt.org/bugs/view.php?id=27275ExploitPatchVendor Advisory
- http://github.com/mantisbt/mantisbt/commit/221cf323f16a9738a5b27aaba94758f11281dPatchThird Party Advisory
- https://mantisbt.org/bugs/view.php?id=27275ExploitPatchVendor Advisory
FAQ
What is CVE-2020-25288?
CVE-2020-25288 is a vulnerability with a CVSS score of 4.8 (MEDIUM). An issue was discovered in MantisBT before 2.24.3. When editing an Issue in a Project where a Custom Field with a crafted Regular Expression property is used, improper escaping of the corresponding fo...
How severe is CVE-2020-25288?
CVE-2020-25288 has been rated MEDIUM with a CVSS base score of 4.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-25288?
Check the references section above for vendor advisories and patch information. Affected products include: Mantisbt Mantisbt.