MantisBT 'delete_attachments_threshold()' Function Security Bypass Vulnerability

MantisBT is prone to a security-bypass vulnerability that may allow attackers to perform actions without proper authorization.

Attackers can exploit this issue to bypass security restrictions to obtain sensitive information or perform unauthorized actions; this may aid in launching further attacks.

MantisBT versions prior to 1.2.11 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus