CVE-2010-3763
Description
Cross-site scripting (XSS) vulnerability in core/summary_api.php in MantisBT before 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the Summary field, a different vector than CVE-2010-3303.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
MantisBT before 1.2.3 has a stored XSS vulnerability in the Summary field on the summary page.
Vulnerability
Cross-site scripting (XSS) vulnerability in core/summary_api.php in MantisBT before version 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the Summary field (bug summary). The issue is fixed by using string_display_line() instead of string_html_specialchars() or direct output [1][2][3][4]. Affected versions include all prior to 1.2.3.
Exploitation
An attacker can exploit this by entering malicious JavaScript or HTML into a bug's Summary field, which is then displayed on the summary page without proper sanitization. No prior authentication is required if the attacker can create or modify bugs, though in typical configurations only authenticated users with report or update permissions can set the Summary field. The attacker does not need direct network access to the summary page beyond normal HTTP requests [4].
Impact
Successful exploitation leads to arbitrary script execution in the context of the victim's browser when they view the summary page. This can result in session hijacking, information disclosure, or other client-side attacks. The compromise occurs at the user's privilege level.
Mitigation
MantisBT version 1.2.3, released on September 2, 2010, includes the fix. Administrators should upgrade to at least 1.2.3 or later. The official patch replaces string_html_specialchars() and direct output with string_display_line() in core/summary_api.php [4]. No workarounds other than upgrading are documented. The issue is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
39cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*+ 38 more
- cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*range: <=1.2.2
- cpe:2.3:a:mantisbt:mantisbt:0.18.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.0a1:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.0a2:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.1:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.2:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.3:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.4:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:0.19.5:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0a1:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0a2:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0a3:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc5:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.0.8:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.2.1:*:*:*:*:*:*:*
- (no CPE)range: <1.2.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- www.mantisbt.org/bugs/changelog_page.phpnvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.htmlnvd
- lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.htmlnvd
- secunia.com/advisories/42772nvd
- secunia.com/advisories/51199nvd
- security.gentoo.org/glsa/glsa-201211-01.xmlnvd
- www.mantisbt.org/blog/nvd
- www.mantisbt.org/bugs/view.phpnvd
- www.openwall.com/lists/oss-security/2010/09/14/12nvd
- www.openwall.com/lists/oss-security/2010/09/14/13nvd
- www.securityfocus.com/bid/43837nvd
- www.vupen.com/english/advisories/2011/0002nvd
News mentions
0No linked articles in our index yet.