|Title:||Mantis multiple vulnerabilities|
Mantis suffers from a dual vulnerability that allows
remote attackers to access arbitrary files on your
system, as well as possible execute abritrary commands
on your system with the priviledges of the web server
If you are running version 0.17.2 or earlier, please
be advised that these versions also suffer from
an SQL injection attack vulnerability in the
Solution: Upgrade to version 0.17.4 or later.
Risk factor : High
BugTraq ID: 5509|
BugTraq ID: 5510
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.