CVE-2014-8598

MantisBT 1.2.x - Info Disclosure

Title source: llm

Description

The XML Import/Export plugin in MantisBT 1.2.x does not restrict access, which allows remote attackers to (1) upload arbitrary XML files via the import page or (2) obtain sensitive information via the export page. NOTE: this issue can be combined with CVE-2014-7146 to execute arbitrary PHP code.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubywebappsmultiple

https://www.exploit-db.com/exploits/41685

View Code ZIP pw:eip

References (7)

[Vendor Advisory] http://www.mantisbt.org/bugs/view.php?id=17780

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/98573

[Vendor Advisory] https://github.com/mantisbt/mantisbt/commit/80a15487

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/70996

[Third Party Advisory] http://www.debian.org/security/2015/dsa-3120

[Mailing List] http://www.openwall.com/lists/oss-security/2014/11/07/28

[Third Party Advisory] http://secunia.com/advisories/62101

Scores

EPSS 0.6736

EPSS Percentile 98.6%

Details

CWE

CWE-19

Status published

Products (1)

mantisbt/mantisbt < 1.2.17

Published Nov 18, 2014

Tracked Since Feb 18, 2026