Unspecified vulnerability in (1) query_store.php and (2) manage_proj_create.php in Mantis before 1.0.0 has unknown impact and attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. An original vendor bug report is referenced, but not accessible to the general public.
2006-02-13T11:06:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mantis | mantis | 0.17.1 | Yes |
| Application | mantis | mantis | 0.17.2 | Yes |
| Application | mantis | mantis | 0.17.3 | Yes |
| Application | mantis | mantis | 0.17.4 | Yes |
| Application | mantis | mantis | 0.17.4a | Yes |
| Application | mantis | mantis | 0.17.5 | Yes |
| Application | mantis | mantis | 0.18 | Yes |
| Application | mantis | mantis | 0.18.0_rc1 | Yes |
| Application | mantis | mantis | 0.18.0a2 | Yes |
| Application | mantis | mantis | 0.18.0a3 | Yes |
| Application | mantis | mantis | 0.18.0a4 | Yes |
| Application | mantis | mantis | 0.18.2 | Yes |
| Application | mantis | mantis | 0.18.3 | Yes |
| Application | mantis | mantis | 0.18a1 | Yes |
| Application | mantis | mantis | 0.19.0 | Yes |
| Application | mantis | mantis | 0.19.0_rc1 | Yes |
| Application | mantis | mantis | 0.19.0a | Yes |
| Application | mantis | mantis | 0.19.0a1 | Yes |
| Application | mantis | mantis | 0.19.0a2 | Yes |
| Application | mantis | mantis | 0.19.1 | Yes |
| Application | mantis | mantis | 0.19.2 | Yes |
| Application | mantis | mantis | 0.19.3 | Yes |
| Application | mantis | mantis | 0.19.4 | Yes |
| Application | mantis | mantis | 1.0.0_rc1 | Yes |
| Application | mantis | mantis | 1.0.0_rc2 | Yes |
| Application | mantis | mantis | 1.0.0_rc3 | Yes |
| Application | mantis | mantis | 1.0.0_rc4 | Yes |
| Application | mantis | mantis | 1.0.0a1 | Yes |
| Application | mantis | mantis | 1.0.0a2 | Yes |
| Application | mantis | mantis | 1.0.0a3 | Yes |