Multiple SQL injection vulnerabilities in the manage user page (manage_user_page.php) in Mantis 1.0.0rc3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) prefix and (2) sort parameters to the manage user page (manage_user_page.php), or (3) the sort parameter to view_all_set.php.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mantis | Mantis | * | 0.19.3 (including) |
| Mantis | Mantis | * | 1.0.0_rc3 (including) |
| Mantis | Mantis | 0.9 (including) | 0.9 (including) |
| Mantis | Mantis | 0.9.1 (including) | 0.9.1 (including) |
| Mantis | Mantis | 0.10 (including) | 0.10 (including) |
| Mantis | Mantis | 0.10.1 (including) | 0.10.1 (including) |
| Mantis | Mantis | 0.10.2 (including) | 0.10.2 (including) |
| Mantis | Mantis | 0.11 (including) | 0.11 (including) |
| Mantis | Mantis | 0.11.1 (including) | 0.11.1 (including) |
| Mantis | Mantis | 0.12 (including) | 0.12 (including) |
| Mantis | Mantis | 0.13 (including) | 0.13 (including) |
| Mantis | Mantis | 0.13.1 (including) | 0.13.1 (including) |
| Mantis | Mantis | 0.14 (including) | 0.14 (including) |
| Mantis | Mantis | 0.14.1 (including) | 0.14.1 (including) |
| Mantis | Mantis | 0.14.2 (including) | 0.14.2 (including) |
| Mantis | Mantis | 0.14.3 (including) | 0.14.3 (including) |
| Mantis | Mantis | 0.14.4 (including) | 0.14.4 (including) |
| Mantis | Mantis | 0.14.5 (including) | 0.14.5 (including) |
| Mantis | Mantis | 0.14.6 (including) | 0.14.6 (including) |
| Mantis | Mantis | 0.14.7 (including) | 0.14.7 (including) |
| Mantis | Mantis | 0.14.8 (including) | 0.14.8 (including) |
| Mantis | Mantis | 0.15 (including) | 0.15 (including) |
| Mantis | Mantis | 0.15.1 (including) | 0.15.1 (including) |
| Mantis | Mantis | 0.15.2 (including) | 0.15.2 (including) |
| Mantis | Mantis | 0.15.3 (including) | 0.15.3 (including) |
| Mantis | Mantis | 0.15.4 (including) | 0.15.4 (including) |
| Mantis | Mantis | 0.15.5 (including) | 0.15.5 (including) |
| Mantis | Mantis | 0.15.6 (including) | 0.15.6 (including) |
| Mantis | Mantis | 0.15.7 (including) | 0.15.7 (including) |
| Mantis | Mantis | 0.15.8 (including) | 0.15.8 (including) |
| Mantis | Mantis | 0.15.9 (including) | 0.15.9 (including) |
| Mantis | Mantis | 0.15.10 (including) | 0.15.10 (including) |
| Mantis | Mantis | 0.15.11 (including) | 0.15.11 (including) |
| Mantis | Mantis | 0.15.12 (including) | 0.15.12 (including) |
| Mantis | Mantis | 0.16 (including) | 0.16 (including) |
| Mantis | Mantis | 0.16.0 (including) | 0.16.0 (including) |
| Mantis | Mantis | 0.16.1 (including) | 0.16.1 (including) |
| Mantis | Mantis | 0.17 (including) | 0.17 (including) |
| Mantis | Mantis | 0.17.0 (including) | 0.17.0 (including) |
| Mantis | Mantis | 0.17.1 (including) | 0.17.1 (including) |
| Mantis | Mantis | 0.17.2 (including) | 0.17.2 (including) |
| Mantis | Mantis | 0.17.3 (including) | 0.17.3 (including) |
| Mantis | Mantis | 0.17.4 (including) | 0.17.4 (including) |
| Mantis | Mantis | 0.17.4a (including) | 0.17.4a (including) |
| Mantis | Mantis | 0.17.5 (including) | 0.17.5 (including) |
| Mantis | Mantis | 0.18 (including) | 0.18 (including) |
| Mantis | Mantis | 0.18.0_rc1 (including) | 0.18.0_rc1 (including) |
| Mantis | Mantis | 0.18.0a2 (including) | 0.18.0a2 (including) |
| Mantis | Mantis | 0.18.0a3 (including) | 0.18.0a3 (including) |
| Mantis | Mantis | 0.18.0a4 (including) | 0.18.0a4 (including) |
| Mantis | Mantis | 0.18.2 (including) | 0.18.2 (including) |
| Mantis | Mantis | 0.18.3 (including) | 0.18.3 (including) |
| Mantis | Mantis | 0.18a1 (including) | 0.18a1 (including) |
| Mantis | Mantis | 0.19.0 (including) | 0.19.0 (including) |
| Mantis | Mantis | 0.19.0_rc1 (including) | 0.19.0_rc1 (including) |
| Mantis | Mantis | 0.19.0a (including) | 0.19.0a (including) |
| Mantis | Mantis | 0.19.0a1 (including) | 0.19.0a1 (including) |
| Mantis | Mantis | 0.19.0a2 (including) | 0.19.0a2 (including) |
| Mantis | Mantis | 0.19.1 (including) | 0.19.1 (including) |
| Mantis | Mantis | 0.19.2 (including) | 0.19.2 (including) |
| Mantis | Mantis | 1.0.0_rc1 (including) | 1.0.0_rc1 (including) |
| Mantis | Mantis | 1.0.0_rc2 (including) | 1.0.0_rc2 (including) |
| Mantis | Mantis | 1.0.0a1 (including) | 1.0.0a1 (including) |
| Mantis | Mantis | 1.0.0a2 (including) | 1.0.0a2 (including) |
| Mantis | Mantis | 1.0.0a3 (including) | 1.0.0a3 (including) |
| Mantis | Ubuntu | dapper | * |
| Mantis | Ubuntu | devel | * |
| Mantis | Ubuntu | edgy | * |
| Mantis | Ubuntu | feisty | * |
References
- http://secunia.com/advisories/18181/
- http://secunia.com/advisories/18221
- http://secunia.com/advisories/18481
- http://sourceforge.net/project/shownotes.php?release_id=377932\u0026group_id=14963
- http://sourceforge.net/project/shownotes.php?release_id=377934\u0026group_id=14963
- http://www.debian.org/security/2005/dsa-944
- http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml
- http://www.osvdb.org/22051
- http://www.osvdb.org/22052
- http://www.securityfocus.com/bid/16046/
- http://www.trapkit.de/advisories/TKADV2005-11-002.txt
- http://www.vupen.com/english/advisories/2005/3064
- http://secunia.com/advisories/18181/
- http://secunia.com/advisories/18221
- http://secunia.com/advisories/18481
- http://sourceforge.net/project/shownotes.php?release_id=377932\u0026group_id=14963
- http://sourceforge.net/project/shownotes.php?release_id=377934\u0026group_id=14963
- http://www.debian.org/security/2005/dsa-944
- http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml
- http://www.osvdb.org/22051
- http://www.osvdb.org/22052
- http://www.securityfocus.com/bid/16046/
- http://www.trapkit.de/advisories/TKADV2005-11-002.txt
- http://www.vupen.com/english/advisories/2005/3064