Vulnerabilities > Mantisbt > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-30	CVE-2018-6382	SQL Injection vulnerability in Mantisbt 2.10.0 MantisBT 2.10.0 allows local users to conduct SQL Injection attacks via the vendor/adodb/adodb-php/server.php sql parameter in a request to the 127.0.0.1 IP address. local low complexity mantisbt CWE-89	3.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.