Mantisbt@0.18.0 Security Vulnerabilities and Issues — Mantisbt@0.18.0 CVE List

Lucene search

MantisbtMantisbt0.18.0

17 matches found

CVE•added 2012/06/17 3:41 a.m.•65 views

CVE-2012-2692

MantisBT before 1.2.11 does not check the delete_attachments_threshold permission when form_security_validation is set to OFF, which allows remote authenticated users with certain privileges to bypass intended access restrictions and delete arbitrary attachments.

3.6CVSS5.9AI score0.0066EPSS

CVE•added 2012/06/29 7:55 p.m.•62 views

CVE-2012-1119

MantisBT before 1.2.9 does not audit when users copy or clone a bug report, which makes it easier for remote attackers to copy bug reports without detection.

6.4CVSS6AI score0.03607EPSS

CVE•added 2012/06/29 7:55 p.m.•59 views

CVE-2012-1123

The mci_check_login function in api/soap/mc_api.php in the SOAP API in MantisBT before 1.2.9 allows remote attackers to bypass authentication via a null password.

7.5CVSS6.1AI score0.01357EPSS

Web

CVE•added 2014/11/13 9:32 p.m.•58 views

CVE-2014-8554

SQL injection vulnerability in the mc_project_get_attachments function in api/soap/mc_project_api.php in MantisBT before 1.2.18 allows remote attackers to execute arbitrary SQL commands via the project_id parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1609.

7.5CVSS6.4AI score0.00741EPSS

Web

CVE•added 2011/01/03 8:0 p.m.•57 views

CVE-2010-4350

Directory traversal vulnerability in admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

5.1CVSS7AI score0.09954EPSS

Web

CVE•added 2012/06/29 7:55 p.m.•55 views

CVE-2012-1122

bug_actiongroup.php in MantisBT before 1.2.9 does not properly check the report_bug_threshold permission of the receiving project when moving a bug report, which allows remote authenticated users with the report_bug_threshold and move_bug_threshold privileges for a project to bypass intended access...

3.6CVSS5.9AI score0.01224EPSS

CVE•added 2012/06/29 7:55 p.m.•53 views

CVE-2012-1118

The access_has_bug_level function in core/access_api.php in MantisBT before 1.2.9 does not properly restrict access when the private_bug_view_threshold is set to an array, which allows remote attackers to bypass intended restrictions and perform certain operations on private bug reports.

4.3CVSS6.1AI score0.01253EPSS

CVE•added 2012/11/16 12:55 a.m.•52 views

CVE-2012-5522

MantisBT before 1.2.12 does not use an expected default value during decisions about whether a user may modify the status of a bug, which allows remote authenticated users to bypass intended access restrictions and make status changes by leveraging a blank value for a per-status setting.

5.5CVSS5.9AI score0.00241EPSS

CVE•added 2012/06/29 7:55 p.m.•50 views

CVE-2012-1120

The SOAP API in MantisBT before 1.2.9 does not properly enforce the bugnote_allow_user_edit_delete and delete_bug_threshold permissions, which allows remote authenticated users with read and write SOAP API privileges to delete arbitrary bug reports and bug notes.

3.6CVSS5.9AI score0.00902EPSS

CVE•added 2010/10/05 10:0 p.m.•49 views

CVE-2010-3763

Cross-site scripting (XSS) vulnerability in core/summary_api.php in MantisBT before 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the Summary field, a different vector than CVE-2010-3303.

4.3CVSS5.5AI score0.00598EPSS

Web

CVE•added 2012/11/16 12:55 a.m.•49 views

CVE-2012-5523

core/email_api.php in MantisBT before 1.2.12 does not properly manage the sending of e-mail notifications about restricted bugs, which might allow remote authenticated users to obtain sensitive information by adding a note to a bug before losing permission to view that bug.

5.5CVSS5.6AI score0.00447EPSS

CVE•added 2010/10/05 10:0 p.m.•48 views

CVE-2010-3303

Multiple cross-site scripting (XSS) vulnerabilities in MantisBT before 1.2.3 allow remote authenticated administrators to inject arbitrary web script or HTML via (1) a plugin name, related to manage_plugin_uninstall.php; (2) an enumeration value or (3) a String value of a custom field, related to c...

3.5CVSS5.2AI score0.00392EPSS

Web

CVE•added 2011/01/03 8:0 p.m.•43 views

CVE-2010-4348

Cross-site scripting (XSS) vulnerability in admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

4.3CVSS5.5AI score0.11162EPSS

Web

CVE•added 2011/01/03 8:0 p.m.•43 views

CVE-2010-4349

admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to obtain sensitive information via an invalid db_type parameter, which reveals the installation path in an error message, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

5CVSS6AI score0.09982EPSS

Web

CVE•added 2010/09/07 5:0 p.m.•41 views

CVE-2010-2802

Cross-site scripting (XSS) vulnerability in MantisBT before 1.2.2 allows remote authenticated users to inject arbitrary web script or HTML via an HTML document with a .gif filename extension, related to inline attachments.

3.5CVSS5.7AI score0.00232EPSS

CVE•added 2012/06/17 3:41 a.m.•39 views

CVE-2012-2691

The mc_issue_note_update function in the SOAP API in MantisBT before 1.2.11 does not properly check privileges, which allows remote attackers with bug reporting privileges to edit arbitrary bugnotes via a SOAP request.

7.5CVSS6AI score0.03724EPSS

CVE•added 2012/06/29 7:55 p.m.•34 views

CVE-2012-1121

MantisBT before 1.2.9 does not properly check permissions, which allows remote authenticated users with manager privileges to (1) modify or (2) delete global categories.

4.9CVSS5.9AI score0.01244EPSS