CVE-2014-9573

NONECVSS 0.0

0.0

SQL injection vulnerability in manage_user_page.php in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote administrators with FILE privileges to execute arbitrary SQL commands via the MANTIS_MANAGE_USERS_COOKIE cookie.

🔗 References (16)

cve@mitrehttp://seclists.org/oss-sec/2015/q1/157
cve@mitrehttp://www.securitytracker.com/id/1031633
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/100210
cve@mitrehttps://github.com/mantisbt/mantisbt/commit/69c2d28d
cve@mitrehttps://github.com/mantisbt/mantisbt/commit/7cc4539f
cve@mitrehttps://www.htbridge.com/advisory/HTB23243
cve@mitrehttps://www.mantisbt.org/bugs/view.php?id=17937
cve@mitrehttps://www.mantisbt.org/bugs/view.php?id=17940
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/oss-sec/2015/q1/157
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1031633
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/100210
af854a3a-2127-422b-91ae-364da2661108https://github.com/mantisbt/mantisbt/commit/69c2d28d
af854a3a-2127-422b-91ae-364da2661108https://github.com/mantisbt/mantisbt/commit/7cc4539f
af854a3a-2127-422b-91ae-364da2661108https://www.htbridge.com/advisory/HTB23243
af854a3a-2127-422b-91ae-364da2661108https://www.mantisbt.org/bugs/view.php?id=17937

Is Your Infrastructure Affected by CVE-2014-9573?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2014-9573

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2014-9573?