Download
| Alert*
|
oval:org.secpod.oval:def:601901
Multiple security issues have been found in the Mantis bug tracking system, which may result in phishing, information disclosure, CAPTCHA bypass, SQL injection, cross-site scripting or the execution of arbitrary PHP code. oval:org.secpod.oval:def:601438 mantis is installed oval:org.secpod.oval:def:600618 Several vulnerabilities were found in Mantis, a web-based bug tracking system: Insufficient input validation could result in local file inclusion and cross-site scripting. oval:org.secpod.oval:def:601781 Multiple SQL injection vulnerabilities have been discovered in the Mantis bug tracking system. oval:org.secpod.oval:def:600836 Several vulnerabilities were discovered in Mantis, am issue tracking system. CVE-2012-1118 Mantis installation in which the private_bug_view_threshold configuration option has been set to an array value do not properly enforce bug viewing restrictions. CVE-2012-1119 Copy/clone bug report actions fai ... |
