CVE-2013-1931

Name of the Vulnerable Software and Affected Versions MantisBT version 1.2.14

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a version, related to deleting a version. This could potentially lead to unauthorized actions on the affected system.

Recommendations For MantisBT version 1.2.14, update to a newer version that contains a fix for this issue. As a temporary workaround, consider restricting access to the version deletion functionality until a patch is available.