MantisBT 'filter_config_id' SQL Injection Vulnerability Network Vulnerability

Summary

This host is installed with MantisBT and is prone to SQL injection vulnerability.

Impact

Successful exploitation will allow remote authenticated attacker to inject or manipulate SQL queries in the back-end database, allowing for the manipulation or disclosure of arbitrary data. Impact Level: Application

Solution

Upgrade to MantisBT version 1.2.17 or later. For updates refer to http://www.mantisbt.org/download.php

Insight

The flaw is due to the 'admin_config_report.php' script not properly sanitizing user-supplied input to the 'filter_config_id' POST parameter.

Affected

MantisBT version 1.2.13 through 1.2.16

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://packetstormsecurity.com/files/125490/MantisBT-1.2.16-SQL-Injection.html
http://seclists.org/oss-sec/2014/q1/490
http://www.osvdb.com/103842

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-2238

CVSS	Base Score: 6.5 AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability
Apache Struts Cross Site Scripting Vulnerability
Apache Subversion Module Metadata Accessible
/cgi-bin directory browsable ?
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability

Take action and discover your vulnerabilities