CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Dsquare•added 2012/02/01 12:0 a.m.•58 views

Mantis <= 1.1.1 LFI

LFI Vulnerability in language parameter. This exploit is dangerous. Because the LFI is done with require on a value saved in SQL, if the path is non-existent, the user account will be broken. Additionally, this value must be = 32chars MySQL vachar32 Vulnerability Type: Local File Include For the...

7.5CVSS0.3AI score0.00401EPSS

Exploits1References4

Packet Storm•added 2008/05/20 12:0 a.m.•31 views

Mantis Bug Tracker 1.1.1 Multiple Vulnerabilities

Mantis Bug Tracker 1.1.1 Multiple Vulnerabilities Name Multiple Vulnerabilities in Mantis Systems Affected Mantis 1.1.1 and possibly earlier versions Severity High Impact CVSSv2 High 9/10, vector: AV:N/AC:L/Au:N/C:C/I:P/A:P Vendor http://www.mantisbt.org/ Advisory...

6.8CVSS0.2AI score0.01938EPSS

Exploits6

UbuntuCve•added 2008/05/16 12:54 p.m.•18 views

CVE-2008-2276

Cross-site request forgery CSRF vulnerability in manageusercreate.php in Mantis 1.1.1 allows remote attackers to create new administrative users via a crafted link...

6.8CVSS5.9AI score0.01938EPSS

Exploits6References1

CVE•added 2008/05/16 6:54 a.m.•64 views

CVE-2008-2276

CVE-2008-2276 is a CSRF vulnerability in Mantis 1.1.1 (manage_user_create.php) that lets an attacker create new administrative users via a crafted link. OpenVAS/Fedora entries indicate updates were released (e.g., FEDORA-2008-6647/6657) to address mantis; no further technical exploit details are ...

6.8CVSS6.4AI score0.01938EPSS

Exploits6References12Affected Software1

Cvelist•added 2008/05/16 6:54 a.m.•23 views

CVE-2008-2276

Cross-site request forgery CSRF vulnerability in manageusercreate.php in Mantis 1.1.1 allows remote attackers to create new administrative users via a crafted link...

6.4AI score0.01938EPSS

Exploits6References12

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by