Description

MantisBT version 1.2.18 (and older versions) are affected by multiple security issues. All installations that are currently running any 1.2.x version are strongly advised to upgrade to MantisBT 1.2.19.

This release resolves 5 security issues:

  • #17938/CVE-2014-9571: XSS in install.php
  • #17939/CVE-2014-9572: Improper Access Control in install.php
  • #17940/CVE-2014-9573: SQL Injection in manage_user_page.php
  • #17984/CVE-2014-9624: CAPTCHA bypass
  • #17997/CVE-2015-1042: URL redirection issue

Remediation

Upgrade to the latest version of MantisBT (these issues were fixed in version 1.2.19).

References

MantisBT 1.2.19 Released

Multiple vulnerabilities in MantisBT

Related Vulnerabilities

WordPress Plugin wpDataTables-WordPress Data Table, Dynamic Tables & Table Charts (Premium) SQL Injection (3.4)

WordPress Plugin Caldera Forms-More Than Contact Forms Arbitrary File Disclosure (1.8.1)

Stack Trace Disclosure (Apache MyFaces)

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.7)

Clockwork PHP dev tool enabled

Severity

High

Classification

CVE-2014-9571 CVE-2014-9572 CVE-2014-9573 CVE-2014-9624 CVE-2015-1042 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure SQL Injection Url Redirection XXE