Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mantis mantis 1.0.0 rc4 vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2006-1577
Multiple cross-site scripting (XSS) vulnerabilities in view_all_set.php in Mantis 1.0.1, 1.0.0rc5, and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) start_day, (2) start_year, and (3) start_month parameters.
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.1
Mantis Mantis 1.0
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 1.0.0a3
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
890
VMScore
CVE-2006-6515
Mantis prior to 1.1.0a2 sets the default value of $g_bug_reminder_threshold to "reporter" instead of a more privileged role, which has unknown impact and attack vectors, possibly related to frequency of reminders.
Mantis Mantis 1.0.6
Mantis Mantis 1.0.2
Mantis Mantis 1.0.4
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.0
Mantis Mantis 1.0.1
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 1.0.3
Mantis Mantis 1.0.5
Mantis Mantis 1.0.0a3
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0 Rc5
Mantis Mantis
445
VMScore
CVE-2006-6574
Mantis prior to 1.1.0a2 does not implement per-item access control for Issue History (Bug History), which allows remote malicious users to obtain sensitive information by reading the Change column, as demonstrated by the Change column of a custom field.
Mantis Mantis 1.0.6
Mantis Mantis 1.0.2
Mantis Mantis 1.0.4
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 1.0.0
Mantis Mantis 1.0.1
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 1.0.3
Mantis Mantis 1.0.5
Mantis Mantis 1.0.0a3
Mantis Mantis 1.0.0a1
Mantis Mantis 1.0.0a2
Mantis Mantis 1.0.0 Rc5
Mantis Mantis
383
VMScore
CVE-2006-0664
Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis prior to 1.0 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from th...
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.18
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.19.3
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 0.19.0a1
Mantis Mantis 0.17.4a
Mantis Mantis 0.19.0a2
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 0.18.0a3
Mantis Mantis 0.17.2
Mantis Mantis 0.18.3
Mantis Mantis 1.0.0a3
Mantis Mantis 1.0.0a1
Mantis Mantis 0.17.3
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.17.1
Mantis Mantis 0.19.0a
Mantis Mantis 1.0.0a2
890
VMScore
CVE-2006-0665
Unspecified vulnerability in (1) query_store.php and (2) manage_proj_create.php in Mantis prior to 1.0.0 has unknown impact and attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. An original vendor bu...
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.18
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.19.3
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 0.19.0a1
Mantis Mantis 0.17.4a
Mantis Mantis 0.19.0a2
Mantis Mantis 1.0.0 Rc4
Mantis Mantis 0.18.0a3
Mantis Mantis 0.17.2
Mantis Mantis 0.18.3
Mantis Mantis 1.0.0a3
Mantis Mantis 1.0.0a1
Mantis Mantis 0.17.3
Mantis Mantis 0.19.0 Rc1
Mantis Mantis 0.17.1
Mantis Mantis 0.19.0a
Mantis Mantis 1.0.0a2
440
VMScore
CVE-2006-0841
Multiple cross-site scripting (XSS) vulnerabilities in Mantis 1.00rc4 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) hide_status, (2) handler_id, (3) user_monitor, (4) reporter_id, (5) view_type, (6) show_severity, (7) show_c...
Mantis Mantis 0.10.2
Mantis Mantis 0.10
Mantis Mantis 0.12.0
Mantis Mantis 0.14.7
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.18
Mantis Mantis 0.15.0
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 0.14.2
Mantis Mantis 0.9.1
Mantis Mantis 0.13
Mantis Mantis 0.10.1
Mantis Mantis 0.17.0
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.19.3
Mantis Mantis 1.0.0 Rc2
Mantis Mantis 0.15.2
Mantis Mantis 0.19.0a1
Mantis Mantis 0.11
2 EDB exploits
355
VMScore
CVE-2008-3331
Cross-site scripting (XSS) vulnerability in return_dynamic_filters.php in Mantis prior to 1.1.2 allows remote malicious users to inject arbitrary web script or HTML via the filter_target parameter.
Mantis Mantis 0.10.2
Mantis Mantis 0.10
Mantis Mantis 0.12.0
Mantis Mantis 0.14.7
Mantis Mantis 1.0.6
Mantis Mantis 0.19
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0
Mantis Mantis 1.0.2
Mantis Mantis 0.15.12
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.15.3
Mantis Mantis 0.18
Mantis Mantis 0.15.0
Mantis Mantis 1.0.4
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 0.15.9
Mantis Mantis 0.14.2
Mantis Mantis 0.9.1
Mantis Mantis 0.13
Mantis Mantis 0.10.1
1 EDB exploit
655
VMScore
CVE-2008-3332
Eval injection vulnerability in adm_config_set.php in Mantis prior to 1.1.2 allows remote authenticated administrators to execute arbitrary code via the value parameter.
Mantis Mantis 0.10.2
Mantis Mantis 0.10
Mantis Mantis 0.12.0
Mantis Mantis 0.14.7
Mantis Mantis 1.0.6
Mantis Mantis 0.19
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0
Mantis Mantis 1.0.2
Mantis Mantis 0.15.12
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.15.3
Mantis Mantis 0.18
Mantis Mantis 0.15.0
Mantis Mantis 1.0.4
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 0.15.9
Mantis Mantis 0.14.2
Mantis Mantis 0.9.1
Mantis Mantis 0.13
Mantis Mantis 0.10.1
1 EDB exploit
668
VMScore
CVE-2008-3333
Directory traversal vulnerability in core/lang_api.php in Mantis prior to 1.1.2 allows remote malicious users to include and execute arbitrary files via the language parameter to the user preferences page (account_prefs_update.php).
Mantis Mantis 0.10.2
Mantis Mantis 0.10
Mantis Mantis 0.12.0
Mantis Mantis 0.14.7
Mantis Mantis 1.0.6
Mantis Mantis 0.19
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0
Mantis Mantis 1.0.2
Mantis Mantis 0.15.12
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.15.3
Mantis Mantis 0.18
Mantis Mantis 0.15.0
Mantis Mantis 1.0.4
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 0.15.9
Mantis Mantis 0.14.2
Mantis Mantis 0.9.1
Mantis Mantis 0.13
Mantis Mantis 0.10.1
383
VMScore
CVE-2008-0404
Cross-site scripting (XSS) vulnerability in Mantis prior to 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via vectors related to the "Most active bugs" summary.
Mantis Mantis 0.10.2
Mantis Mantis 0.10
Mantis Mantis 0.14.7
Mantis Mantis 0.18.2
Mantis Mantis 0.18.0
Mantis Mantis 0.15.12
Mantis Mantis 0.18.0a2
Mantis Mantis 0.18.0a4
Mantis Mantis 0.15.3
Mantis Mantis 0.18
Mantis Mantis 1.0.0 Rc3
Mantis Mantis 0.15.9
Mantis Mantis 0.14.2
Mantis Mantis 0.9.1
Mantis Mantis
Mantis Mantis 0.13
Mantis Mantis 0.10.1
Mantis Mantis 0.17.0
Mantis Mantis 0.15.10
Mantis Mantis 0.16.1
Mantis Mantis 1.0.0 Rc1
Mantis Mantis 0.19.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »