3 matches found
CVE-2013-1811
CVE-2013-1811 affects MantisBT prior to 1.2.13, where users with Reporter permissions can change any issue to the New status due to an access-control flaw. The impact is an improper state change/authorization weakness; CVSS metrics in the public entry indicate a MEDIUM base severity (approx. 4.3/...
Debian DSA-3120-1 : mantis - security update
Multiple security issues have been found in the Mantis bug tracking system, which may result in phishing, information disclosure, CAPTCHA bypass, SQL injection, cross-site scripting or the execution of arbitrary PHP code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text a...
Debian Security Advisory DSA 3120-1 (mantis - security update)
Multiple security issues have been found in the Mantis bug tracking system, which may result in phishing, information disclosure, CAPTCHA bypass, SQL injection, cross-site scripting or the execution of arbitrary PHP code. OpenVAS Vulnerability Test $Id: deb3120.nasl 6609 2017-07-07 12:05:59Z...