Lucene search
Ubuntu.comUB:CVE-2014-2238HistoryMar 05, 2014 - 12:00 a.m.
CVE-2014-2238
2014-03-0500:00:00
ubuntu.com
ubuntu.com
15
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.3%
SQL injection vulnerability in the manage configuration page
(adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote
authenticated administrators to execute arbitrary SQL commands via the
filter_config_id parameter.
References
Related
seebug
seebug
MantisBT 'adm_config_report.php' SQL注入漏洞
2014-03-05 00:00:00
packetstorm
packetstorm
Wordpress Photo Gallery Unauthenticated SQL Injection User Enumeration
2015-01-13 00:00:00
MantisBT Admin SQL Injection Arbitrary File Read
2014-03-03 00:00:00
zdt
zdt
MantisBT Admin SQL Injection Arbitrary File Read Vulnerability
2014-03-04 00:00:00
prion
prion
Sql injection
2014-03-05 16:37:00
openvas
openvas
MantisBT 1.2.13 - 1.2.16 'filter_config_id' SQLi Vulnerability
2014-05-13 00:00:00
Fedora Update for mantis FEDORA-2014-12146
2014-10-13 00:00:00
Fedora Update for mantis FEDORA-2014-3421
2014-03-17 00:00:00
nessus
nessus
MantisBT 1.2.13 - 1.2.16 'admin_config_report.php' SQLi
2015-01-22 00:00:00
Fedora 20 : mantis-1.2.17-1.fc20 (2014-3421)
2014-03-13 00:00:00
Fedora 19 : mantis-1.2.17-1.fc19 (2014-3440)
2014-03-13 00:00:00
cve
cve
CVE-2014-2238
2014-03-05 16:37:00
fedora
fedora
[SECURITY] Fedora 20 Update: mantis-1.2.17-3.fc20
2014-10-12 05:01:05
[SECURITY] Fedora 20 Update: mantis-1.2.17-1.fc20
2014-03-13 05:07:18
[SECURITY] Fedora 20 Update: mantis-1.2.17-4.fc20
2014-12-12 04:30:46
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.3%
Related for UB:CVE-2014-2238