Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-8554

SQL injection vulnerability in the mc_project_get_attachments function in api/soap/mc_project_api.php in MantisBT before 1.2.18 allows remote attackers to execute arbitrary SQL commands via the project_id parameter. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-1609.

Published

2014-11-13T21:32:11.063

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mantisbt	mantisbt	≤ 1.2.17	Yes
Application	mantisbt	mantisbt	0.18.0	Yes
Application	mantisbt	mantisbt	0.19.0	Yes
Application	mantisbt	mantisbt	0.19.0	Yes
Application	mantisbt	mantisbt	0.19.0	Yes
Application	mantisbt	mantisbt	0.19.0	Yes
Application	mantisbt	mantisbt	0.19.0a1	Yes
Application	mantisbt	mantisbt	0.19.0a2	Yes
Application	mantisbt	mantisbt	0.19.1	Yes
Application	mantisbt	mantisbt	0.19.2	Yes
Application	mantisbt	mantisbt	0.19.3	Yes
Application	mantisbt	mantisbt	0.19.4	Yes
Application	mantisbt	mantisbt	0.19.5	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0	Yes
Application	mantisbt	mantisbt	1.0.0a1	Yes
Application	mantisbt	mantisbt	1.0.0a2	Yes
Application	mantisbt	mantisbt	1.0.0a3	Yes
Application	mantisbt	mantisbt	1.0.1	Yes
Application	mantisbt	mantisbt	1.0.2	Yes
Application	mantisbt	mantisbt	1.0.3	Yes
Application	mantisbt	mantisbt	1.0.4	Yes
Application	mantisbt	mantisbt	1.0.5	Yes
Application	mantisbt	mantisbt	1.0.6	Yes
Application	mantisbt	mantisbt	1.0.7	Yes
Application	mantisbt	mantisbt	1.0.8	Yes
Application	mantisbt	mantisbt	1.0.9	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.0	Yes
Application	mantisbt	mantisbt	1.1.1	Yes
Application	mantisbt	mantisbt	1.1.2	Yes
Application	mantisbt	mantisbt	1.1.3	Yes
Application	mantisbt	mantisbt	1.1.4	Yes
Application	mantisbt	mantisbt	1.1.5	Yes
Application	mantisbt	mantisbt	1.1.6	Yes
Application	mantisbt	mantisbt	1.1.7	Yes
Application	mantisbt	mantisbt	1.1.8	Yes
Application	mantisbt	mantisbt	1.1.9	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0	Yes
Application	mantisbt	mantisbt	1.2.0a1	Yes
Application	mantisbt	mantisbt	1.2.0a2	Yes
Application	mantisbt	mantisbt	1.2.1	Yes
Application	mantisbt	mantisbt	1.2.2	Yes
Application	mantisbt	mantisbt	1.2.3	Yes
Application	mantisbt	mantisbt	1.2.4	Yes
Application	mantisbt	mantisbt	1.2.5	Yes
Application	mantisbt	mantisbt	1.2.6	Yes
Application	mantisbt	mantisbt	1.2.7	Yes
Application	mantisbt	mantisbt	1.2.8	Yes
Application	mantisbt	mantisbt	1.2.9	Yes
Application	mantisbt	mantisbt	1.2.10	Yes
Application	mantisbt	mantisbt	1.2.11	Yes
Application	mantisbt	mantisbt	1.2.12	Yes
Application	mantisbt	mantisbt	1.2.13	Yes
Application	mantisbt	mantisbt	1.2.14	Yes
Application	mantisbt	mantisbt	1.2.15	Yes
Application	mantisbt	mantisbt	1.2.16	Yes

References

http://seclists.org/oss-sec/2014/q4/479 ([email protected])
http://seclists.org/oss-sec/2014/q4/487 Exploit ([email protected])
http://secunia.com/advisories/62101 ([email protected])
http://www.debian.org/security/2015/dsa-3120 ([email protected])
http://www.mantisbt.org/bugs/view.php?id=16880 ([email protected])
http://www.mantisbt.org/bugs/view.php?id=17812 Exploit, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/70856 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/98457 ([email protected])
http://seclists.org/oss-sec/2014/q4/479 (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/oss-sec/2014/q4/487 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/62101 (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2015/dsa-3120 (af854a3a-2127-422b-91ae-364da2661108)
http://www.mantisbt.org/bugs/view.php?id=16880 (af854a3a-2127-422b-91ae-364da2661108)
http://www.mantisbt.org/bugs/view.php?id=17812 Exploit, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/70856 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/98457 (af854a3a-2127-422b-91ae-364da2661108)