Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.155 views

MantisBT Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MantisBT password reset', 'Description' = %q MantisBT before 1.3.10, 2.2.4, and 2.3.1 are vulnerable to unauthenticated password reset. , 'Licens...

8.8CVSS7.4AI score0.90856EPSS
Exploits10
Packet Storm
Packet Storm
added 2020/09/18 12:0 a.m.1313 views

Mantis Bug Tracker 2.3.0 Remote Code Execution

Exploit Title: Mantis Bug Tracker 2.3.0 - Remote Code Execution Unauthenticated Date: 2020-09-17 Vulnerability Discovery: hyp3rlinx, permanull Exploit Author: Nikolas Geiselman Vendor Homepage: https://mantisbt.org/ Software Link: https://mantisbt.org/download.php Version: 1.3.0/2.3.0 Tested on:...

6.5CVSS0.3AI score0.90856EPSS
Exploits12
Exploit DB
Exploit DB
added 2020/09/18 12:0 a.m.1164 views

Mantis Bug Tracker 2.3.0 - Remote Code Execution (Unauthenticated)

Exploit Title: Mantis Bug Tracker 2.3.0 - Remote Code Execution Unauthenticated Date: 2020-09-17 Vulnerability Discovery: hyp3rlinx, permanull Exploit Author: Nikolas Geiselman Vendor Homepage: https://mantisbt.org/ Software Link: https://mantisbt.org/download.php Version: 1.3.0/2.3.0 Tested on:...

8.8CVSS7.8AI score0.90856EPSS
Exploits12
Metasploit
Metasploit
added 2017/07/09 12:14 a.m.47 views

MantisBT password reset

MantisBT before 1.3.10, 2.2.4, and 2.3.1 are vulnerable to unauthenticated password reset. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MantisBT password reset', 'Description' = %q MantisBT...

8.8CVSS0.3AI score0.90856EPSS
Exploits10
NVD
NVD
added 2017/04/16 2:59 p.m.11 views

CVE-2017-7615

MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirmhash value to verify.php...

8.8CVSS8.9AI score0.90856EPSS
Exploits10References6
CVE
CVE
added 2017/04/16 2:45 p.m.143 views

CVE-2017-7615

CVE-2017-7615 affects MantisBT up to version 2.30 (e.g., 2.3.0/2.3.1). The vulnerability is in verify.php where an empty confirm_hash enables pre-auth remote password reset and unauthenticated admin access, allowing unauthorized password changes and admin access. Public exploit references exist (...

8.8CVSS8.7AI score0.90856EPSS
Exploits10References6Affected Software1
Exploit DB
Exploit DB
added 2017/04/16 12:0 a.m.98 views

Mantis Bug Tracker 1.3.0/2.3.0 - Password Reset

Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MANTIS-BUG-TRACKER-PRE-AUTH-REMOTE-PASSWORD-RESET.txt + ISR: ApparitionSec Vendor: ================ www.mantisbt.org Product: ================== Mantis Bug Tracker v1.3.0 /...

8.8CVSS8.8AI score0.90856EPSS
Exploits10
exploitpack
exploitpack
added 2017/04/16 12:0 a.m.43 views

Mantis Bug Tracker 1.3.02.3.0 - Password Reset

Mantis Bug Tracker 1.3.02.3.0 - Password Reset + Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MANTIS-BUG-TRACKER-PRE-AUTH-REMOTE-PASSWORD-RESET.txt + ISR: ApparitionSec Vendor: ================ www.mantisbt.org Product...

6.5CVSS0.1AI score0.90856EPSS
Exploits10
Packet Storm
Packet Storm
added 2017/04/16 12:0 a.m.92 views

Mantis Bug Tracker 1.3.0 / 2.3.0 Remote Password Reset

Credits: John Page a.k.a hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MANTIS-BUG-TRACKER-PRE-AUTH-REMOTE-PASSWORD-RESET.txt + ISR: ApparitionSec Vendor: ================ www.mantisbt.org Product: ================== Mantis Bug Tracker v1.3.0 /...

0.3AI score0.90856EPSS
Exploits10
Circl
Circl
added 2017/04/16 12:0 a.m.22 views

CVE-2017-7615

creationtimestamp| type| source ---|---|--- 2017-04-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41890 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/mantisbtpasswordreset.rb 2021-02-05 21:43:47+00:00|...

8.8CVSS8AI score0.90856EPSS
Exploits10References4
Rows per page
Query Builder