Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mantis mantis 0.17.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-0499
Mantis 0.17.5 and previous versions stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.
Mantis Mantis 0.17.5
NA
CVE-2006-0664
Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis prior to 1.0 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from th...
Mantis Mantis 0.17.5
Mantis Mantis 0.18
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.4
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.18.3
Mantis Mantis 0.18a1
Mantis Mantis 0.19.2
Mantis Mantis 0.19.3
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.17.1
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a3
Mantis Mantis 0.19.0a
Mantis Mantis 0.19.0a1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.0 Rc3
NA
CVE-2006-0665
Unspecified vulnerability in (1) query_store.php and (2) manage_proj_create.php in Mantis prior to 1.0.0 has unknown impact and attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. An original vendor bu...
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a3
Mantis Mantis 0.19.0a
Mantis Mantis 0.19.0a1
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 0.18
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.4
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.17.3
Mantis Mantis 0.17.4
Mantis Mantis 0.18.0a4
Mantis Mantis 0.18.2
Mantis Mantis 0.19.0a2
Mantis Mantis 0.19.1
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
NA
CVE-2004-1730
Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote malicious users to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_statu...
Mantis Mantis 0.13
Mantis Mantis 0.13.1
Mantis Mantis 0.14.6
Mantis Mantis 0.14.7
Mantis Mantis 0.15.3
Mantis Mantis 0.15.4
Mantis Mantis 0.16.0
Mantis Mantis 0.16.1
Mantis Mantis 0.17.4a
Mantis Mantis 0.17.5
Mantis Mantis 0.9
Mantis Mantis 0.9.1
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.5
Mantis Mantis 0.15.12
Mantis Mantis 0.15.2
Mantis Mantis 0.15.9
Mantis Mantis 0.16
Mantis Mantis 0.17.3
Mantis Mantis 0.17.4
NA
CVE-2004-1731
signup_page.php in Mantis bugtracker allows remote malicious users to send e-mail bombs by creating multiple users and providing the same e-mail address.
Mantis Mantis 0.12
Mantis Mantis 0.13
Mantis Mantis 0.14.5
Mantis Mantis 0.14.6
Mantis Mantis 0.15.2
Mantis Mantis 0.15.3
Mantis Mantis 0.16
Mantis Mantis 0.16.0
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.17.5
Mantis Mantis 0.19.0a
Mantis Mantis 0.9
Mantis Mantis 0.11
Mantis Mantis 0.11.1
Mantis Mantis 0.14.3
Mantis Mantis 0.14.4
Mantis Mantis 0.15.11
Mantis Mantis 0.15.12
Mantis Mantis 0.15.8
Mantis Mantis 0.15.9
Mantis Mantis 0.17.2
1 EDB exploit
NA
CVE-2005-3091
Cross-site scripting (XSS) vulnerability in Mantis prior to 1.0.0rc1 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp".
Mantis Mantis 0.10.0
Mantis Mantis 0.10.1
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
Mantis Mantis 0.15.0
Mantis Mantis 0.15.1
Mantis Mantis 0.16.1
Mantis Mantis 0.17.0
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.19.0
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a1
Mantis Mantis 0.19.0a2
Mantis Mantis 0.10.2
Mantis Mantis 0.11.1
Mantis Mantis 0.14.3
Mantis Mantis 0.14.5
Mantis Mantis 0.15.11
Mantis Mantis 0.15.2
Mantis Mantis 0.15.7
Mantis Mantis 0.15.9
NA
CVE-2004-2666
Mantis prior to 20041016 provides a complete Issue History (Bug History) in the web interface regardless of view_history_threshold, which allows remote malicious users to obtain sensitive information (private bug details) by visiting a bug's web page.
Mantis Mantis 0.10
Mantis Mantis 0.10.1
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
Mantis Mantis 0.15
Mantis Mantis 0.15.1
Mantis Mantis 0.17
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.17.3
Mantis Mantis 0.18a1
Mantis Mantis 0.19
Mantis Mantis 0.11
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.6
Mantis Mantis 0.15.10
Mantis Mantis 0.15.12
Mantis Mantis 0.15.8
Mantis Mantis 0.16
Mantis Mantis 0.17.4a
Mantis Mantis 0.18
NA
CVE-2005-4238
Cross-site scripting (XSS) vulnerability in view_filters_page.php in Mantis 1.0.0rc3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the target_field parameter.
Mantis Mantis 0.11.1
Mantis Mantis 0.12
Mantis Mantis 0.14.4
Mantis Mantis 0.14.5
Mantis Mantis 0.15.12
Mantis Mantis 0.15.2
Mantis Mantis 0.15.9
Mantis Mantis 0.16
Mantis Mantis 0.17.3
Mantis Mantis 0.17.4
Mantis Mantis 0.17.4a
Mantis Mantis 0.18.2
Mantis Mantis 0.18.3
Mantis Mantis 0.19.1
Mantis Mantis 0.19.2
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0a3
Mantis Mantis 0.13
Mantis Mantis 0.13.1
Mantis Mantis 0.14.6
Mantis Mantis 0.14.7
Mantis Mantis 0.14.8
1 EDB exploit
NA
CVE-2005-4523
Mantis 1.0.0rc3 and previous versions discloses private bugs via public RSS feeds, which allows remote malicious users to obtain sensitive information.
Mantis Mantis 0.10
Mantis Mantis 0.10.1
Mantis Mantis 0.14
Mantis Mantis 0.14.1
Mantis Mantis 0.15
Mantis Mantis 0.15.1
Mantis Mantis 0.15.5
Mantis Mantis 0.15.6
Mantis Mantis 0.17
Mantis Mantis 0.17.0
Mantis Mantis 0.18.0 Rc1
Mantis Mantis 0.18.0a2
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.19.0a
Mantis Mantis 0.9.1
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.10.2
Mantis Mantis 0.11
Mantis Mantis 0.14.2
Mantis Mantis 0.14.3
Mantis Mantis 0.15.10
Mantis Mantis 0.15.11
NA
CVE-2005-4519
Multiple SQL injection vulnerabilities in the manage user page (manage_user_page.php) in Mantis 1.0.0rc3 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) prefix and (2) sort parameters to the manage user page (manage_user_page.php),...
Mantis Mantis 0.10.1
Mantis Mantis 0.10.2
Mantis Mantis 0.14.2
Mantis Mantis 0.14.3
Mantis Mantis 0.15.1
Mantis Mantis 0.15.10
Mantis Mantis 0.15.6
Mantis Mantis 0.15.7
Mantis Mantis 0.17.1
Mantis Mantis 0.17.2
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a3
Mantis Mantis 0.19.0a
Mantis Mantis 0.19.0a1
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
Mantis Mantis 0.11
Mantis Mantis 0.11.1
Mantis Mantis 0.14.4
Mantis Mantis 0.14.5
Mantis Mantis 0.15.11
Mantis Mantis 0.15.12
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »