cve-2004-1730
Vulnerability from cvelistv5
Published
2005-02-26 05:00
Modified
2024-08-08 01:00
Severity ?
EPSS score ?
Summary
Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_status parameter to view_all_set.php.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T01:00:37.150Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "mantis-viewallset-xss(17072)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17072"
},
{
"name": "mantis-loginpage-xss(17066)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17066"
},
{
"name": "12338",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/12338"
},
{
"name": "mantis-loginselectprojpage-xss(17070)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17070"
},
{
"name": "20040820 Multiple Vulnerabilities in Mantis Bugtracker",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2"
},
{
"name": "10994",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/10994"
},
{
"name": "mantis-signup-xss(17069)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17069"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2004-08-20T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_status parameter to view_all_set.php."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "mantis-viewallset-xss(17072)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17072"
},
{
"name": "mantis-loginpage-xss(17066)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17066"
},
{
"name": "12338",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/12338"
},
{
"name": "mantis-loginselectprojpage-xss(17070)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17070"
},
{
"name": "20040820 Multiple Vulnerabilities in Mantis Bugtracker",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2"
},
{
"name": "10994",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/10994"
},
{
"name": "mantis-signup-xss(17069)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17069"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-1730",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_status parameter to view_all_set.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "mantis-viewallset-xss(17072)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17072"
},
{
"name": "mantis-loginpage-xss(17066)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17066"
},
{
"name": "12338",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/12338"
},
{
"name": "mantis-loginselectprojpage-xss(17070)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17070"
},
{
"name": "20040820 Multiple Vulnerabilities in Mantis Bugtracker",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2"
},
{
"name": "10994",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/10994"
},
{
"name": "mantis-signup-xss(17069)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17069"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2004-1730",
"datePublished": "2005-02-26T05:00:00",
"dateReserved": "2005-02-26T00:00:00",
"dateUpdated": "2024-08-08T01:00:37.150Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0266C2F7-FB20-44EF-B0BB-ECCF055D03A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.9.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A21FF02F-982C-429F-A14D-D6E18058DD61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9407F704-FF3C-4976-BE4C-A1DDC16715D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.10.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5173B32-1099-47C9-996B-56DB29456BB9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.10.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6CA26FD-9C45-4628-82B7-E37E3EA3E2A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B9B4611-C002-40F5-978C-BB90F1A893C3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.11.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C7C8B5A-A630-4EDD-A6E8-27D2E1139CF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B347D6C8-4607-481D-863E-7F41E9868041\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4F434D16-4F09-4BCF-BD3E-9114876C2575\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.13.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F6D8FD23-C9A3-40AB-B3ED-86739BA8A362\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"72BD480B-7CFB-4FD3-8E47-028F32AEF902\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AC7C781D-F5D1-4C63-B6E3-230DEC80104E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D0755FA0-2365-42B4-8E42-214D5BAD71A1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"35248DDA-D37D-4D72-9FF8-6813BA4C87BE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A67C54F4-4155-43DA-8E07-579249759989\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DE7BEF1-1522-4666-B6B1-36A308FBC0A3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C376D216-914A-4D96-8603-C6861B3E2857\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF0636CA-49A5-4463-B22B-6C5E1E2D44AC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.14.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3A07B4C-CE12-4381-BFE4-CE79411F5069\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB6E1BE3-BF57-4ED4-918D-8B23CB195ECE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB502B29-FBC5-4984-A735-AA0B6DF4A58D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F759138-7079-471F-B30D-ED62351CFCB9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5DF83421-973D-4AC9-BDA3-4161B9CF2D91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1633BF3C-89C2-4BEF-9F56-6F19984D3CA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"084BD5F4-37F8-4913-8045-769FD81F8C36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76B09948-A44C-47D8-A5EC-3873FF36F451\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89D72C1E-73E5-4F51-9D30-D28026939C57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E9EDAA7A-DF0C-4D9E-9D30-0422E4801612\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C469C66-B64B-49BD-9D1C-D15F0E9028EF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C28223A1-359F-434C-BAAA-82A5F310FA44\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7BF1F18B-AE36-48F3-B784-5C97B3F2535E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.15.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F073B8A1-3339-4BF2-B8D1-F6BA5CF9695A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A62328B-4C77-4FF4-B1D9-BE4A2E5C61FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.16.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DAFD163-7FE7-48FB-8860-7B00B0FFA628\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.16.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03A0C36A-83DF-4E67-BA82-0ACE4D50C7D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7C074DBE-AFC9-4094-A170-A31D79C139D8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53520AA0-E5AB-450A-9D95-E075B552D2E9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8462CB86-30B1-43D8-B306-271709423DB2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"131A96BB-EF2E-4AE2-9334-91CA96222BA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"17DC6205-7016-40C3-921A-B5AEC8513CCC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"721A536A-9626-4BD7-B84A-E3C4074F1217\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.4a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D77F95A-0059-4442-8D9D-AA7F101FBBE5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.17.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"89786096-AE1B-491B-8284-DBCC2F6112F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E0BC255D-6B0F-412D-B639-B9F9656E4839\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18.0_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4B4CFE80-223F-45DA-A9FB-03474F61E027\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18.0a2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8724300D-CBDC-4C66-BF78-038F838C06DF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18.0a3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B7283A58-EE8E-493F-8E51-C97FF87ECA16\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18.0a4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E3CF3162-EAF8-438C-891A-FD13ECF6D6A6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.18a1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2202C65A-33FB-4742-8706-2BDD5B442030\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mantis:mantis:0.19.0a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1E7658F-A543-46F5-B79D-E0E25B7C574F\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_status parameter to view_all_set.php.\"}]",
"id": "CVE-2004-1730",
"lastModified": "2024-11-20T23:51:36.260",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2004-12-31T05:00:00.000",
"references": "[{\"url\": \"http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/12338\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/10994\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17066\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17069\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17070\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17072\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/12338\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.securityfocus.com/bid/10994\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17066\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17069\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17070\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/17072\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2004-1730\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2004-12-31T05:00:00.000\",\"lastModified\":\"2024-11-20T23:51:36.260\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cross-site scripting (XSS) vulnerability in Mantis bugtracker allows remote attackers to inject arbitrary web script or HTML via (1) the return parameter to login_page.php, (2) e-mail field in signup.php, (3) action parameter to login_select_proj_page.php, or (4) hide_status parameter to view_all_set.php.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0266C2F7-FB20-44EF-B0BB-ECCF055D03A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A21FF02F-982C-429F-A14D-D6E18058DD61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9407F704-FF3C-4976-BE4C-A1DDC16715D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5173B32-1099-47C9-996B-56DB29456BB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.10.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6CA26FD-9C45-4628-82B7-E37E3EA3E2A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B9B4611-C002-40F5-978C-BB90F1A893C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C7C8B5A-A630-4EDD-A6E8-27D2E1139CF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B347D6C8-4607-481D-863E-7F41E9868041\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4F434D16-4F09-4BCF-BD3E-9114876C2575\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.13.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6D8FD23-C9A3-40AB-B3ED-86739BA8A362\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72BD480B-7CFB-4FD3-8E47-028F32AEF902\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC7C781D-F5D1-4C63-B6E3-230DEC80104E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0755FA0-2365-42B4-8E42-214D5BAD71A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35248DDA-D37D-4D72-9FF8-6813BA4C87BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A67C54F4-4155-43DA-8E07-579249759989\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DE7BEF1-1522-4666-B6B1-36A308FBC0A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C376D216-914A-4D96-8603-C6861B3E2857\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF0636CA-49A5-4463-B22B-6C5E1E2D44AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.14.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3A07B4C-CE12-4381-BFE4-CE79411F5069\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB6E1BE3-BF57-4ED4-918D-8B23CB195ECE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB502B29-FBC5-4984-A735-AA0B6DF4A58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F759138-7079-471F-B30D-ED62351CFCB9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DF83421-973D-4AC9-BDA3-4161B9CF2D91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1633BF3C-89C2-4BEF-9F56-6F19984D3CA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"084BD5F4-37F8-4913-8045-769FD81F8C36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76B09948-A44C-47D8-A5EC-3873FF36F451\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89D72C1E-73E5-4F51-9D30-D28026939C57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9EDAA7A-DF0C-4D9E-9D30-0422E4801612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C469C66-B64B-49BD-9D1C-D15F0E9028EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C28223A1-359F-434C-BAAA-82A5F310FA44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF1F18B-AE36-48F3-B784-5C97B3F2535E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.15.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F073B8A1-3339-4BF2-B8D1-F6BA5CF9695A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A62328B-4C77-4FF4-B1D9-BE4A2E5C61FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.16.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DAFD163-7FE7-48FB-8860-7B00B0FFA628\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03A0C36A-83DF-4E67-BA82-0ACE4D50C7D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7C074DBE-AFC9-4094-A170-A31D79C139D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53520AA0-E5AB-450A-9D95-E075B552D2E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8462CB86-30B1-43D8-B306-271709423DB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"131A96BB-EF2E-4AE2-9334-91CA96222BA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17DC6205-7016-40C3-921A-B5AEC8513CCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"721A536A-9626-4BD7-B84A-E3C4074F1217\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.4a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D77F95A-0059-4442-8D9D-AA7F101FBBE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.17.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89786096-AE1B-491B-8284-DBCC2F6112F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E0BC255D-6B0F-412D-B639-B9F9656E4839\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B4CFE80-223F-45DA-A9FB-03474F61E027\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8724300D-CBDC-4C66-BF78-038F838C06DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7283A58-EE8E-493F-8E51-C97FF87ECA16\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18.0a4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3CF3162-EAF8-438C-891A-FD13ECF6D6A6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.18a1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2202C65A-33FB-4742-8706-2BDD5B442030\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mantis:mantis:0.19.0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1E7658F-A543-46F5-B79D-E0E25B7C574F\"}]}]}],\"references\":[{\"url\":\"http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/12338\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/10994\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17066\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17069\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17070\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17072\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=109312225727345\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/12338\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.securityfocus.com/bid/10994\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17066\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17069\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17070\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/17072\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.