CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1118

The access_has_bug_level function in core/access_api.php in MantisBT before 1.2.9 does not properly restrict access when the private_bug_view_threshold is set to an array, which allows remote attackers to bypass intended restrictions and perform certain operations on private bug reports.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.3%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2012-1118

Mantisbt » Mantisbt » Version: N/A

cpe:2.3:a:mantisbt:mantisbt:-
Mantisbt » Mantisbt » Version: 0.18.0

cpe:2.3:a:mantisbt:mantisbt:0.18.0
Mantisbt » Mantisbt » Version: 0.19.0

cpe:2.3:a:mantisbt:mantisbt:0.19.0
Mantisbt » Mantisbt » Version: 0.19.0a1

cpe:2.3:a:mantisbt:mantisbt:0.19.0a1
Mantisbt » Mantisbt » Version: 0.19.0a2

cpe:2.3:a:mantisbt:mantisbt:0.19.0a2
Mantisbt » Mantisbt » Version: 0.19.1

cpe:2.3:a:mantisbt:mantisbt:0.19.1
Mantisbt » Mantisbt » Version: 0.19.2

cpe:2.3:a:mantisbt:mantisbt:0.19.2
Mantisbt » Mantisbt » Version: 0.19.3

cpe:2.3:a:mantisbt:mantisbt:0.19.3
Mantisbt » Mantisbt » Version: 0.19.4

cpe:2.3:a:mantisbt:mantisbt:0.19.4
Mantisbt » Mantisbt » Version: 0.19.5

cpe:2.3:a:mantisbt:mantisbt:0.19.5
Mantisbt » Mantisbt » Version: 1.0.0

cpe:2.3:a:mantisbt:mantisbt:1.0.0
Mantisbt » Mantisbt » Version: 1.0.0a1

cpe:2.3:a:mantisbt:mantisbt:1.0.0a1
Mantisbt » Mantisbt » Version: 1.0.0a2

cpe:2.3:a:mantisbt:mantisbt:1.0.0a2
Mantisbt » Mantisbt » Version: 1.0.0a3

cpe:2.3:a:mantisbt:mantisbt:1.0.0a3
Mantisbt » Mantisbt » Version: 1.0.1

cpe:2.3:a:mantisbt:mantisbt:1.0.1
Mantisbt » Mantisbt » Version: 1.0.2

cpe:2.3:a:mantisbt:mantisbt:1.0.2
Mantisbt » Mantisbt » Version: 1.0.3

cpe:2.3:a:mantisbt:mantisbt:1.0.3
Mantisbt » Mantisbt » Version: 1.0.4

cpe:2.3:a:mantisbt:mantisbt:1.0.4
Mantisbt » Mantisbt » Version: 1.0.5

cpe:2.3:a:mantisbt:mantisbt:1.0.5
Mantisbt » Mantisbt » Version: 1.0.6

cpe:2.3:a:mantisbt:mantisbt:1.0.6
Mantisbt » Mantisbt » Version: 1.0.7

cpe:2.3:a:mantisbt:mantisbt:1.0.7
Mantisbt » Mantisbt » Version: 1.0.8

cpe:2.3:a:mantisbt:mantisbt:1.0.8
Mantisbt » Mantisbt » Version: 1.0.9

cpe:2.3:a:mantisbt:mantisbt:1.0.9
Mantisbt » Mantisbt » Version: 1.1.0

cpe:2.3:a:mantisbt:mantisbt:1.1.0
Mantisbt » Mantisbt » Version: 1.1.1

cpe:2.3:a:mantisbt:mantisbt:1.1.1
Mantisbt » Mantisbt » Version: 1.1.2

cpe:2.3:a:mantisbt:mantisbt:1.1.2
Mantisbt » Mantisbt » Version: 1.1.3

cpe:2.3:a:mantisbt:mantisbt:1.1.3
Mantisbt » Mantisbt » Version: 1.1.4

cpe:2.3:a:mantisbt:mantisbt:1.1.4
Mantisbt » Mantisbt » Version: 1.1.5

cpe:2.3:a:mantisbt:mantisbt:1.1.5
Mantisbt » Mantisbt » Version: 1.1.6

cpe:2.3:a:mantisbt:mantisbt:1.1.6
Mantisbt » Mantisbt » Version: 1.1.7

cpe:2.3:a:mantisbt:mantisbt:1.1.7
Mantisbt » Mantisbt » Version: 1.1.8

cpe:2.3:a:mantisbt:mantisbt:1.1.8
Mantisbt » Mantisbt » Version: 1.1.9

cpe:2.3:a:mantisbt:mantisbt:1.1.9
Mantisbt » Mantisbt » Version: 1.2.0

cpe:2.3:a:mantisbt:mantisbt:1.2.0
Mantisbt » Mantisbt » Version: 1.2.0a1

cpe:2.3:a:mantisbt:mantisbt:1.2.0a1
Mantisbt » Mantisbt » Version: 1.2.0a2

cpe:2.3:a:mantisbt:mantisbt:1.2.0a2
Mantisbt » Mantisbt » Version: 1.2.1

cpe:2.3:a:mantisbt:mantisbt:1.2.1
Mantisbt » Mantisbt » Version: 1.2.2

cpe:2.3:a:mantisbt:mantisbt:1.2.2
Mantisbt » Mantisbt » Version: 1.2.3

cpe:2.3:a:mantisbt:mantisbt:1.2.3
Mantisbt » Mantisbt » Version: 1.2.4

cpe:2.3:a:mantisbt:mantisbt:1.2.4
Mantisbt » Mantisbt » Version: 1.2.5

cpe:2.3:a:mantisbt:mantisbt:1.2.5
Mantisbt » Mantisbt » Version: 1.2.6

cpe:2.3:a:mantisbt:mantisbt:1.2.6
Mantisbt » Mantisbt » Version: 1.2.7

cpe:2.3:a:mantisbt:mantisbt:1.2.7
Mantisbt » Mantisbt » Version: 1.2.8

cpe:2.3:a:mantisbt:mantisbt:1.2.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1118

Products

Pricing

Contact Us