Lucene search
K

7 matches found

UbuntuCve
UbuntuCve
added 2017/08/01 2:29 p.m.21 views

CVE-2015-5059

The "Project Documentation" feature in MantisBT 1.2.19 and earlier, when the threshold to access files $gviewprojdocthreshold is set to ANYBODY, allows remote authenticated users to download attachments linked to arbitrary private projects via a file id number in the fileid parameter to...

5.3CVSS6.2AI score0.01435EPSS
Exploits0References2
NVD
NVD
added 2017/08/01 2:29 p.m.15 views

CVE-2015-5059

The "Project Documentation" feature in MantisBT 1.2.19 and earlier, when the threshold to access files $gviewprojdocthreshold is set to ANYBODY, allows remote authenticated users to download attachments linked to arbitrary private projects via a file id number in the fileid parameter to...

5.3CVSS5AI score0.01435EPSS
Exploits0References7
CVE
CVE
added 2017/08/01 2:0 p.m.55 views

CVE-2015-5059

CVE-2015-5059 affects MantisBT up to version 1.2.19, where the Project Documentation feature exposes attachments in private projects when the file access threshold ($g_view_proj_doc_threshold) is set to ANYBODY. This allows remote authenticated users to download attachments linked to arbitrary pr...

5.3CVSS4.9AI score0.01435EPSS
Exploits0References7Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/08/10 12:0 a.m.22 views

Fedora 21 : mantis-1.2.19-3.fc21 (2015-12010)

Security fix for CVE-2015-5059 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

5.3CVSS5.6AI score0.01435EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/08/10 12:0 a.m.19 views

Fedora 22 : mantis-1.2.19-3.fc22 (2015-12011)

Security fix for CVE-2015-5059 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

5.3CVSS5.6AI score0.01435EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2015/08/08 12:0 a.m.27 views

Fedora Update for mantis FEDORA-2015-12010

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.7AI score0.50561EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2015/08/08 12:0 a.m.17 views

Fedora Update for mantis FEDORA-2015-12011

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS5.3AI score0.01435EPSS
Exploits0References2
Rows per page
Query Builder