CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2692

MantisBT before 1.2.11 does not check the delete_attachments_threshold permission when form_security_validation is set to OFF, which allows remote authenticated users with certain privileges to bypass intended access restrictions and delete arbitrary attachments.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.015

EPSS Ranking 70.2%

CVSS Severity

CVSS v2 Score 3.6

References

Products affected by CVE-2012-2692

Mantisbt » Mantisbt » Version: N/A

cpe:2.3:a:mantisbt:mantisbt:-
Mantisbt » Mantisbt » Version: 0.18.0

cpe:2.3:a:mantisbt:mantisbt:0.18.0
Mantisbt » Mantisbt » Version: 0.19.0

cpe:2.3:a:mantisbt:mantisbt:0.19.0
Mantisbt » Mantisbt » Version: 0.19.1

cpe:2.3:a:mantisbt:mantisbt:0.19.1
Mantisbt » Mantisbt » Version: 0.19.2

cpe:2.3:a:mantisbt:mantisbt:0.19.2
Mantisbt » Mantisbt » Version: 0.19.3

cpe:2.3:a:mantisbt:mantisbt:0.19.3
Mantisbt » Mantisbt » Version: 0.19.4

cpe:2.3:a:mantisbt:mantisbt:0.19.4
Mantisbt » Mantisbt » Version: 0.19.5

cpe:2.3:a:mantisbt:mantisbt:0.19.5
Mantisbt » Mantisbt » Version: 1.0.0

cpe:2.3:a:mantisbt:mantisbt:1.0.0
Mantisbt » Mantisbt » Version: 1.0.1

cpe:2.3:a:mantisbt:mantisbt:1.0.1
Mantisbt » Mantisbt » Version: 1.0.2

cpe:2.3:a:mantisbt:mantisbt:1.0.2
Mantisbt » Mantisbt » Version: 1.0.3

cpe:2.3:a:mantisbt:mantisbt:1.0.3
Mantisbt » Mantisbt » Version: 1.0.4

cpe:2.3:a:mantisbt:mantisbt:1.0.4
Mantisbt » Mantisbt » Version: 1.0.5

cpe:2.3:a:mantisbt:mantisbt:1.0.5
Mantisbt » Mantisbt » Version: 1.0.6

cpe:2.3:a:mantisbt:mantisbt:1.0.6
Mantisbt » Mantisbt » Version: 1.0.7

cpe:2.3:a:mantisbt:mantisbt:1.0.7
Mantisbt » Mantisbt » Version: 1.0.8

cpe:2.3:a:mantisbt:mantisbt:1.0.8
Mantisbt » Mantisbt » Version: 1.0.9

cpe:2.3:a:mantisbt:mantisbt:1.0.9
Mantisbt » Mantisbt » Version: 1.1.0

cpe:2.3:a:mantisbt:mantisbt:1.1.0
Mantisbt » Mantisbt » Version: 1.1.1

cpe:2.3:a:mantisbt:mantisbt:1.1.1
Mantisbt » Mantisbt » Version: 1.1.2

cpe:2.3:a:mantisbt:mantisbt:1.1.2
Mantisbt » Mantisbt » Version: 1.1.3

cpe:2.3:a:mantisbt:mantisbt:1.1.3
Mantisbt » Mantisbt » Version: 1.1.4

cpe:2.3:a:mantisbt:mantisbt:1.1.4
Mantisbt » Mantisbt » Version: 1.1.5

cpe:2.3:a:mantisbt:mantisbt:1.1.5
Mantisbt » Mantisbt » Version: 1.1.6

cpe:2.3:a:mantisbt:mantisbt:1.1.6
Mantisbt » Mantisbt » Version: 1.1.7

cpe:2.3:a:mantisbt:mantisbt:1.1.7
Mantisbt » Mantisbt » Version: 1.1.8

cpe:2.3:a:mantisbt:mantisbt:1.1.8
Mantisbt » Mantisbt » Version: 1.1.9

cpe:2.3:a:mantisbt:mantisbt:1.1.9
Mantisbt » Mantisbt » Version: 1.2.0

cpe:2.3:a:mantisbt:mantisbt:1.2.0
Mantisbt » Mantisbt » Version: 1.2.1

cpe:2.3:a:mantisbt:mantisbt:1.2.1
Mantisbt » Mantisbt » Version: 1.2.10

cpe:2.3:a:mantisbt:mantisbt:1.2.10
Mantisbt » Mantisbt » Version: 1.2.2

cpe:2.3:a:mantisbt:mantisbt:1.2.2
Mantisbt » Mantisbt » Version: 1.2.3

cpe:2.3:a:mantisbt:mantisbt:1.2.3
Mantisbt » Mantisbt » Version: 1.2.4

cpe:2.3:a:mantisbt:mantisbt:1.2.4
Mantisbt » Mantisbt » Version: 1.2.5

cpe:2.3:a:mantisbt:mantisbt:1.2.5
Mantisbt » Mantisbt » Version: 1.2.6

cpe:2.3:a:mantisbt:mantisbt:1.2.6
Mantisbt » Mantisbt » Version: 1.2.7

cpe:2.3:a:mantisbt:mantisbt:1.2.7
Mantisbt » Mantisbt » Version: 1.2.8

cpe:2.3:a:mantisbt:mantisbt:1.2.8
Mantisbt » Mantisbt » Version: 1.2.9

cpe:2.3:a:mantisbt:mantisbt:1.2.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2692

Products

Pricing

Contact Us