Vulnerabilities > Mantis > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-22 | CVE-2008-4689 | Improper Authentication vulnerability in Mantis Mantis before 1.1.3 does not unset the session cookie during logout, which makes it easier for remote attackers to hijack sessions. | 7.5 |
| 2008-07-27 | CVE-2008-3333 | Path Traversal vulnerability in Mantis Directory traversal vulnerability in core/lang_api.php in Mantis before 1.1.2 allows remote attackers to include and execute arbitrary files via the language parameter to the user preferences page (account_prefs_update.php). | 7.5 |
| 2006-01-09 | CVE-2006-0147 | Remote Security vulnerability in Moodle Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo. | 7.5 |
| 2005-12-28 | CVE-2005-4519 | Unspecified vulnerability in Mantis Multiple SQL injection vulnerabilities in the manage user page (manage_user_page.php) in Mantis 1.0.0rc3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prefix and (2) sort parameters to the manage user page (manage_user_page.php), or (3) the sort parameter to view_all_set.php. | 7.5 |
| 2005-12-28 | CVE-2005-4518 | Mantis before 0.19.4 allows remote attackers to bypass the file upload size restriction by modifying the max_file_size parameter to (1) bug_file_add.php, (2) bug_report.php, (3) bug_report_advanced_page.php, and (4) proj_doc_add_page.php. | 7.5 |
| 2005-10-27 | CVE-2005-3339 | Remote vulnerability in Mantis Mantis before 0.19.3 caches the User ID longer than necessary, which has unknown impact and attack vectors. | 7.2 |
| 2005-10-27 | CVE-2005-3336 | Remote vulnerability in Mantis 0.19.2/1.0.0Rc2 SQL injection vulnerability in Mantis 1.0.0RC2 and 0.19.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
| 2005-10-27 | CVE-2005-3335 | Unspecified vulnerability in Mantis 0.19.2/1.0.0Rc2 PHP file inclusion vulnerability in bug_sponsorship_list_view_inc.php in Mantis 1.0.0RC2 and 0.19.2 allows remote attackers to execute arbitrary PHP code and include arbitrary local files via the t_core_path parameter. | 7.5 |
| 2005-08-24 | CVE-2005-2556 | Input Validation vulnerability in Mantis core/database_api.php in Mantis 0.19.0a1 through 1.0.0a3, with register_globals enabled, allows remote attackers to connect to internal databases by modifying the g_db_type variable and monitoring the speed of responses, as identified by bug#0005956. | 7.5 |
| 2004-12-31 | CVE-2004-1734 | Remote Server-Side Script Execution vulnerability in Mantis 0.19.0A PHP remote file inclusion vulnerability in Mantis 0.19.0a allows remote attackers to execute arbitrary PHP code by modifying the (1) t_core_path parameter to bug_api.php or (2) t_core_dir parameter to relationship_api.php to reference a URL on a remote web server that contains the code. | 7.5 |