manage_user_page.php in Mantis 1.00rc4 and previous versions does not properly handle a sort parameter containing a ' (quote) character, which allows remote malicious users to trigger a SQL error that may be repeatedly reported to a user who makes subsequent web accesses with the MANTIS_MANAGE_COOKIE cookie. NOTE: this issue might be the same as vector 2 in CVE-2005-4519.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mantis mantis 0.11.0 |
||
mantis mantis 0.11.1 |
||
mantis mantis 0.14.0 |
||
mantis mantis 0.14.1 |
||
mantis mantis 0.14.2 |
||
mantis mantis 0.15 |
||
mantis mantis 0.15.0 |
||
mantis mantis 0.17.4a |
||
mantis mantis 0.18 |
||
mantis mantis 0.18.1 |
||
mantis mantis 0.18.2 |
||
mantis mantis 0.18.3 |
||
mantis mantis 0.10.0 |
||
mantis mantis 0.10.1 |
||
mantis mantis 0.13 |
||
mantis mantis 0.13.0 |
||
mantis mantis 0.14.5 |
||
mantis mantis 0.14.6 |
||
mantis mantis 0.16 |
||
mantis mantis 0.16.0 |
||
mantis mantis 0.18.0a1 |
||
mantis mantis 0.18.0a2 |
||
mantis mantis 0.19.0_rc1 |
||
mantis mantis 0.19.0a |
||
mantis mantis 0.9 |
||
mantis mantis 0.9.0 |
||
mantis mantis 1.0.0a3 |
||
mantis mantis |
||
mantis mantis 0.10.2 |
||
mantis mantis 0.11 |
||
mantis mantis 0.13.1 |
||
mantis mantis 0.14 |
||
mantis mantis 0.14.7 |
||
mantis mantis 0.14.8 |
||
mantis mantis 0.17 |
||
mantis mantis 0.17.0 |
||
mantis mantis 0.18.0a3 |
||
mantis mantis 0.18.0a4 |
||
mantis mantis 0.19.0a1 |
||
mantis mantis 0.19.0a2 |
||
mantis mantis 0.9.1 |
||
mantis mantis 1.0.0_rc1 |
||
mantis mantis 0.10 |
||
mantis mantis 0.12 |
||
mantis mantis 0.12.0 |
||
mantis mantis 0.14.3 |
||
mantis mantis 0.14.4 |
||
mantis mantis 0.15.1 |
||
mantis mantis 0.15.2 |
||
mantis mantis 0.18.0 |
||
mantis mantis 0.18.0_rc1 |
||
mantis mantis 0.18a1 |
||
mantis mantis 0.19.0 |
||
mantis mantis 0.19.3 |
||
mantis mantis 0.19.4 |
||
mantis mantis 1.0.0a1 |
||
mantis mantis 1.0.0a2 |
||
mantis mantis 0.19.1 |
||
mantis mantis 0.19.2 |
||
mantis mantis 1.0.0_rc2 |
||
mantis mantis 1.0.0_rc3 |
Vulmon