Main Vulnerability Database SB2015021003

SB2015021003 - Input validation error in mantisbt.sourceforge.net MantisBT

Published: February 10, 2015 Updated: August 9, 2020

Security Bulletin ID SB2015021003

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: CVE-2015-1042)

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

The string_sanitize_url function in core/string_api.php in MantisBT 1.2.0a3 through 1.2.18 uses an incorrect regular expression, which allows remote attackers to conduct open redirect and phishing attacks via a URL with a ":/" (colon slash) separator in the return parameter to login_page.php, a different vulnerability than CVE-2014-6316. <a href="http://cwe.mitre.org/data/definitions/601.html">CWE-601: URL Redirection to Untrusted Site ('Open Redirect')</a>

Remediation

Install update from vendor's website.

SB2015021003 - Input validation error in mantisbt.sourceforge.net MantisBT

Breakdown by Severity

Description

Remediation

References

Please verify you're human