RETIRED: MantisBT SOAP API CVE-2012-2691 Security Bypass Vulnerability

MantisBT is prone to a security-bypass vulnerability that may allow attackers to perform actions without proper authorization.

Attackers can exploit this issue to bypass security restrictions to obtain sensitive information or perform unauthorized actions; this may aid in launching further attacks.

NOTE: This BID is being retired as a duplicate of BID 53907 (MantisBT SOAP API Security Bypass Vulnerability).

MantisBT versions prior to 1.2.11 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus