4 matches found
CVE-2005-2556
CVE-2005-2556 affects MantisBT versions 0.19.0a1 through 1.0.0a3 when register_globals is enabled. The issue arises from improper handling of the g_db_type parameter in core/database_api.php, allowing a remote attacker to influence database type and potentially access internal databases; related ...
CVE-2005-2556
core/databaseapi.php in Mantis 0.19.0a1 through 1.0.0a3, with registerglobals enabled, allows remote attackers to connect to internal databases by modifying the gdbtype variable and monitoring the speed of responses, as identified by bug0005956...
CVE-2005-2556
core/databaseapi.php in Mantis 0.19.0a1 through 1.0.0a3, with registerglobals enabled, allows remote attackers to connect to internal databases by modifying the gdbtype variable and monitoring the speed of responses, as identified by bug0005956...
CVE-2005-2556
core/databaseapi.php in Mantis 0.19.0a1 through 1.0.0a3, with registerglobals enabled, allows remote attackers to connect to internal databases by modifying the gdbtype variable and monitoring the speed of responses, as identified by bug0005956...