CVE-2002-1112: CVE-2002-1112

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1112

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Mantis before 0.17.4 allows remote attackers to list project bugs without authentication by modifying the cookie that is used by the "View Bugs" page.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

mantis受限项目漏洞列表查看漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

mantis是一款基于WEB的PHP编写MySQL后台支持的漏洞跟踪系统。 Mantis中用户可以从下拉菜单中选择一个项目，然后与之相关的所有漏洞列表将被显示。 'View Bugs'页面负责显示一个项目中的漏洞列表，但它没有检查是否用户确实有权访问该项目。攻击者可以通过修改cookie中储存的项目编号变量，来获取该项目的漏洞列表，即使该项目对用户来讲是受限的。注意攻击者并不能获取受限项目中漏洞的详细内容，也不能获取受限/私有漏洞的列表。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1112

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1112

Please Login to view more intelligence information

http://mantisbt.sourceforge.net/advisories/2002/2002-03.txtx_refsource_CONFIRM
http://www.securityfocus.com/bid/5514vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-153vendor-advisoryx_refsource_DEBIAN
https://exchange.xforce.ibmcloud.com/vulnerabilities/9899vdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=102978673018271&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1112

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-1112

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2002-1112

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1112

III. Intelligence Information for CVE-2002-1112

IV. Related Vulnerabilities

V. Comments for CVE-2002-1112

Leave a comment