Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2005-3335

Published: 27/10/2005 Updated: 11/07/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Mantis

Vulnerability Summary

PHP file inclusion vulnerability in bug_sponsorship_list_view_inc.php in Mantis 1.0.0RC2 and 0.19.2 allows remote malicious users to execute arbitrary PHP code and include arbitrary local files via the t_core_path parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

mantis mantis 0.19.2

mantis mantis 1.0.0_rc2

Vendor Advisories

Debian Security Advisories: DSA-905-1 mantis -- several vulnerabilities
Several security related problems have been discovered in Mantis, a web-based bug tracking system The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2005-3091 A cross-site scripting vulnerability allows attackers to inject arbitrary web script or HTML CVE-2005-3335 A file inclusion vulnerability a ...

References

NVD-CWE-Otherhttp://bugs.mantisbt.org/changelog_page.phphttp://secunia.com/secunia_research/2005-46/advisory/http://secunia.com/advisories/16818http://www.gentoo.org/security/en/glsa/glsa-200510-24.xmlhttp://secunia.com/advisories/17362http://securitytracker.com/id?1015110http://www.debian.org/security/2005/dsa-905http://www.securityfocus.com/bid/15212http://www.securityfocus.com/bid/15227http://secunia.com/advisories/16506http://secunia.com/advisories/17654http://securityreason.com/securityalert/121http://www.vupen.com/english/advisories/2005/2221https://exchange.xforce.ibmcloud.com/vulnerabilities/22886https://nvd.nist.govhttps://www.debian.org/security/./dsa-905
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook