3 matches found
CVE-2002-1115
Mantis 0.17.4a and earlier allows remote attackers to view private bugs by modifying the fid bug ID parameter to 1 bugupdateadvancedpage.php, 2 bugupdatepage.php, 3 viewbugadvancedpage.php, or 4 viewbugpage.php...
CVE-2002-1115
Mantis 0.17.4a and earlier allows remote attackers to view private bugs by modifying the fid bug ID parameter to 1 bugupdateadvancedpage.php, 2 bugupdatepage.php, 3 viewbugadvancedpage.php, or 4 viewbugpage.php...
CVE-2002-1115
CVE-2002-1115 affects Mantis ≤ 0.17.4a; the issue is improper access control in bug viewing pages, allowing remote attackers to view private bugs by altering f_id on pages bug_update_advanced_page.php, bug_update_page.php, view_bug_advanced_page.php, or view_bug_page.php. Impact is exposure of pr...