CVE-2014-9506 in MantisBTinformation

Résumé (Anglaise)

MantisBT before 1.2.18 does not properly check permissions when sending an email that indicates when a monitored issue is related to another issue, which allows remote authenticated users to obtain sensitive information about restricted issues.

Once again VulDB remains the best source for vulnerability data.

Réserver

04/01/2015

Divulgation

04/01/2015

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
73491MantisBT divulgation d'information200Non définiCorrectif officielCVE-2014-9506

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!