|
Family: CGI abuses --> Category: infos
Mantis Multiple Flaws (3) Vulnerability Scan
Vulnerability Scan Summary Checks for the version of Mantis
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP application that is prone to
multiple vulnerabilities.
Description :
According to its banner, the remote version of Mantis suffers from
several information disclosure vulnerabilities that may allow an
attacker to view stats of all projects or to receive information for a
project after he was removed from it.
See also :
http://bugs.mantisbt.org/view.php?id=3117
http://bugs.mantisbt.org/view.php?id=4341
Solution :
Upgrade to Mantis 0.19.1 or newer.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|