Unrated severityNVD Advisory· Published Nov 9, 2019· Updated Aug 7, 2024
CVE-2009-2802
CVE-2009-2802
Description
MantisBT 1.2.x before 1.2.2 insecurely handles attachments and MIME types. Arbitrary inline attachment rendering could lead to cross-domain scripting or other browser attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
3- mantisbt.org/blog/archives/mantisbt/113mitrex_refsource_CONFIRM
- mantisbt.org/bugs/view.phpmitrex_refsource_CONFIRM
- security-tracker.debian.org/tracker/CVE-2009-2802mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.