Vulnerability Details : CVE-2017-12061
An XSS issue was discovered in admin/install.php in MantisBT before 1.3.12 and 2.x before 2.5.2. Some variables under user control in the MantisBT installation script are not properly sanitized before being output, allowing remote attackers to inject arbitrary JavaScript code, as demonstrated by the $f_database, $f_db_username, and $f_admin_username variables. This is mitigated by the fact that the admin/ folder should be deleted after installation, and also prevented by CSP.
Vulnerability category: Cross site scripting (XSS)
Products affected by CVE-2017-12061
- cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-12061
0.28%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 68 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-12061
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST | |
6.1
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
2.8
|
2.7
|
NIST |
CWE ids for CVE-2017-12061
-
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-12061
-
https://mantisbt.org/bugs/view.php?id=23146
0023146: CVE-2017-12061: XSS in /admin/install.php script - MantisBTIssue Tracking;Vendor Advisory
-
http://openwall.com/lists/oss-security/2017/08/01/2
oss-security - Re: Advisory: XSS issues in MantisBT (CVE-2017-12061, CVE-2017-12062)Mailing List;Third Party Advisory
-
https://github.com/mantisbt/mantisbt/commit/c73ae3d3d4dd4681489a9e697e8ade785e27cba5
Fix XSS in install.php (CVE-2017-12061) · mantisbt/mantisbt@c73ae3d · GitHubPatch;Third Party Advisory
-
http://www.securitytracker.com/id/1039030
MantisBT Input Validation Flaws in '/admin/install.php' and 'manage_user_page.php' Let Remote Users Conduct Cross-Site Scripting Attacks - SecurityTrackerThird Party Advisory;VDB Entry
-
http://openwall.com/lists/oss-security/2017/08/01/1
oss-security - Advisory: XSS issues in MantisBT (CVE-2017-12061, CVE-2017-12062)Mailing List;Third Party Advisory
-
https://github.com/mantisbt/mantisbt/commit/17f9b94f031ba93ae2a727bca0e68458ecd08fb0
Fix XSS in install.php (CVE-2017-12061) · mantisbt/mantisbt@17f9b94 · GitHubPatch;Third Party Advisory
Jump to