CVE-2002-1110 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in Mantis 0.17.2 and earlier when running without magic_quotes_gpc enabled allows remote attackers to gain privileges or perform unauthorized database operations via modified form fields e.g. to account_update.php.
Reference
http://mantisbt.sourceforge.net/advisories/2002/2002-01.txt http://marc.info/?l=bugtraq&m=102978728718851&w=2 http://www.debian.org/security/2002/dsa-153 http://www.iss.net/security_center/static/9897.php http://www.securityfocus.com/bid/5510
Share on: