CVE-2014-9280 in MantisBTinformation

Résumé

par MITRE

The current_user_get_bug_filter function in core/current_user_api.php in MantisBT before 1.2.18 allows remote attackers to execute arbitrary PHP code via the filter parameter.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

05/12/2014

Divulgation

08/12/2014

Modérer

accepté

Entrée

VDB-73150

CPE

prêt

EPSS

0.03145

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!