Full title: MantisBT 1.2.17 XSS / Improper Access Control / SQL Injection Vulnerabilities 
Category: web applications
Platform: php
MantisBT version 1.2.17 suffers from improper access control, cross site scripting, and remote SQL injection vulnerabilities.

# 0day.today @ http://0day.today/