Dmitry Ivanov d1m0ck reported*1 a security vulnerability in the Source Integration plugin's search results page, allowing an attacker to inject arbitrary HTML or javascript code (the latter, only if MantisBT's default CSP are disabled).
The text was updated successfully, but these errors were encountered:
Dmitry Ivanov d1m0ck reported*1 a security vulnerability in the Source Integration plugin's search results page, allowing an attacker to inject arbitrary HTML or javascript code (the latter, only if MantisBT's default CSP are disabled).
The text was updated successfully, but these errors were encountered: