View | Details | Raw Unified | Return to bug 257068
Collapse All | Expand All

(-)b/security/vuxml/vuln-2021.xml (+36 lines)
Lines 1-3 Link Here
1 
  <vuln vid="9b1699ff-d84c-11eb-92d6-1b6ff3dfe4d3">
2 
    <topic>mantis -- multiple vulnerabilities</topic>
3 
    <affects>
4 
      <package>
5 
	<name>mantis-php73</name>
6 
	<name>mantis-php74</name>
7 
	<name>mantis-php80</name>
8 
	<range><lt>2.25.2,1</lt></range>
9 
      </package>
10 
    </affects>
11 
    <description>
12 
      <body xmlns="http://www.w3.org/1999/xhtml">
13 
	<p>Mantis 2.25.1 and 2.25.2 releases report:</p>
14 
	<blockquote cite="https://mantisbt.org/bugs/changelog_page.php?version_id=362">
15 
	  <p>Security and maintenance release, PHPMailer update to 6.5.0</p>
16 
	  <ul>
17 
	    <li>0028552: XSS in manage_custom_field_edit_page.php (CVE-2021-33557)</li>
18 
	    <li>0028821: Update PHPMailer to 6.5.0 (CVE-2021-3603, CVE-2020-36326)</li>
19 
	  </ul>
20 
	</blockquote>
21 
      </body>
22 
    </description>
23 
    <references>
24 
      <cvename>CVE-2021-33557</cvename>
25 
      <url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33557</url>
26 
      <cvename>CVE-2021-3603</cvename>
27 
      <url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3603</url>
28 
      <cvename>CVE-2020-36326</cvename>
29 
      <url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-36326</url>
30 
    </references>
31 
    <dates>
32 
      <discovery>2021-04-28</discovery>
33 
      <entry>2021-07-09</entry>
34 
    </dates>
35 
  </vuln>
36 

            

        

          1
          
  <vuln vid="01974420-dfaf-11eb-ba49-001b217b3468">

          37
          
  <vuln vid="01974420-dfaf-11eb-ba49-001b217b3468">

        

        

          2
          
    <topic>Gitlab -- vulnerability</topic>

          38
          
    <topic>Gitlab -- vulnerability</topic>

        

        

          3
          
    <affects>

          39
          
    <affects>

        






  

  Return to bug 257068