CVE-2018-16514 — MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFO

Description

A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-13055.

How to fix CVE-2018-16514

To remediate CVE-2018-16514, upgrade the affected package to a fixed version below.

—upgrade to 2.17.1 or later

Is CVE-2018-16514 being exploited?

Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

>= 2.1.0, < 2.17.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.1	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

References (5)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2018-16514
PATCHgithub.com/mantisbt/mantisbt
WEBgithub.com/mantisbt/mantisbt/blob/006cd0cd90c37097e1a065fd3e59ce2534490834/core/filter_form_api.php#L2779
WEBgithub.com/mantisbt/mantisbt/commit/66091a42626631a3063774eb0fb8a4218ab22fd4