Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.23 views

MantisBT < 2.25.8 Information Disclosure Vulnerability - Windows

MantisBT is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mantisbt:mantisbt";...

4.3CVSS5.3AI score0.00594EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/11/29 12:0 a.m.21 views

MantisBT < 2.25.8 Information Disclosure Vulnerability - Linux

MantisBT is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mantisbt:mantisbt";...

4.3CVSS5.3AI score0.00594EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/10/16 9:0 p.m.20 views

CVE-2023-44394 Disclosure of project names to unauthorized users in MantisBT

MantisBT is an open source bug tracker. Due to insufficient access-level checks on the Wiki redirection page, any user can reveal private Projects' names, by accessing wiki.php with sequentially incremented IDs. This issue has been addressed in commit 65c44883f which has been included in release...

4.3CVSS4.3AI score0.00594EPSS
Exploits0References3
OSV
OSV
added 2023/10/16 9:0 p.m.22 views

CVE-2023-44394 Disclosure of project names to unauthorized users in MantisBT

MantisBT is an open source bug tracker. Due to insufficient access-level checks on the Wiki redirection page, any user can reveal private Projects' names, by accessing wiki.php with sequentially incremented IDs. This issue has been addressed in commit 65c44883f which has been included in release...

4.3CVSS4.6AI score0.00594EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/03/09 12:0 a.m.64 views

FreeBSD : mantis -- multiple vulnerabilities (bed545c6-bdb8-11ed-bca8-a33124f1beb1)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the bed545c6-bdb8-11ed-bca8-a33124f1beb1 advisory. - moment is a JavaScript date library for parsing, validating, manipulating, and formatting...

7.5CVSS6.3AI score0.04923EPSS
Exploits2References5
Prion
Prion
added 2021/01/29 7:15 a.m.10 views

Improper access control

An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bugarr= in a crafted bugactiongrouppage.php URL. The target Issues can have Private view statu...

4CVSS5AI score0.00892EPSS
Exploits1References2Affected Software1
OpenVAS
OpenVAS
added 2021/01/15 12:0 a.m.19 views

MantisBT < 2.24.4 Multiple Vulnerabilities - Linux

MantisBT is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.04725EPSS
Exploits7References5
OpenVAS
OpenVAS
added 2021/01/15 12:0 a.m.15 views

MantisBT < 2.24.4 Multiple Vulnerabilities - Windows

MantisBT is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.8AI score0.04725EPSS
Exploits7References5
Rows per page
Query Builder