CVE-2010-2574
Description
Cross-site scripting (XSS) vulnerability in manage_proj_cat_add.php in MantisBT 1.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via the name parameter in an Add Category action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
MantisBT 1.2.2 contains a stored XSS vulnerability in the Add Category functionality, allowing authenticated administrators to inject arbitrary HTML/JavaScript via the name parameter.
Vulnerability
A cross-site scripting (XSS) vulnerability exists in MantisBT version 1.2.2 in the manage_proj_cat_add.php script. When an authenticated administrator creates a new project category, the name parameter is not properly sanitized before being stored and later displayed. This allows injection of arbitrary HTML and script code [2].
Exploitation
An attacker must have administrator privileges in MantisBT. The attacker crafts a malicious payload in the name parameter when performing an Add Category action. No additional user interaction is required beyond the administrator submitting the form. The injected script is stored and executed when other administrators view the category list [2].
Impact
Successful exploitation enables the attacker to execute arbitrary JavaScript in the context of other administrators' browsers. This can lead to session hijacking, defacement, or further compromise of the MantisBT instance. The attack is classified as a stored XSS with a severity of "Less critical" [2].
Mitigation
The vulnerability is fixed in MantisBT version 1.2.3, which was released in September 2010 [3][4]. Users should upgrade to 1.2.3 or later. No workarounds are documented in the available references.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mantisbt/mantisbtPackagist | <= 1.2.2 | — |
Affected products
3Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
15- secunia.com/advisories/40832nvdVendor Advisory
- secunia.com/secunia_research/2010-103/nvdVendor Advisory
- github.com/advisories/GHSA-74x7-mfvg-h2wfghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2010-2574ghsaADVISORY
- lists.fedoraproject.org/pipermail/package-announce/2010-September/048548.htmlnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2010-September/048639.htmlnvdWEB
- lists.fedoraproject.org/pipermail/package-announce/2010-September/048659.htmlnvdWEB
- www.mantisbt.org/bugs/changelog_page.phpnvdWEB
- www.mantisbt.org/bugs/view.phpnvdWEB
- www.openwall.com/lists/oss-security/2010/09/14/12nvdWEB
- www.openwall.com/lists/oss-security/2010/09/14/13nvdWEB
- web.archive.org/web/20200515131055/http://www.securityfocus.com/archive/1/512886/100/0/threadedghsaWEB
- secunia.com/advisories/41653nvd
- www.securityfocus.com/archive/1/512886/100/0/threadednvd
- www.vupen.com/english/advisories/2010/2535nvd
News mentions
0No linked articles in our index yet.