Lucene search
MitreCVELIST:CVE-2018-6382HistoryJan 30, 2018 - 6:00 a.m.
CVE-2018-6382
2018-01-3006:00:00
mitre
www.cve.org
5
MantisBT 2.10.0 allows local users to conduct SQL Injection attacks via the vendor/adodb/adodb-php/server.php sql parameter in a request to the 127.0.0.1 IP address. NOTE: the vendor disputes the significance of this report because server.php is intended to execute arbitrary SQL statements on behalf of authenticated users from 127.0.0.1, and the issue does not have an authentication bypass
Related
openvas
openvas
MantisBT 'sql' Parameter SQL Injection Vulnerability (Feb 2018) - Windows
2018-02-05 00:00:00
MantisBT 'sql' Parameter SQL Injection Vulnerability (Feb 2018) - Linux
2018-02-05 00:00:00
cve
cve
CVE-2018-6382
2018-01-30 06:29:00
prion
prion
Sql injection
2018-01-30 06:29:00
nvd
nvd
CVE-2018-6382
2018-01-30 06:29:00