An issue was discovered in MantisBT before 2.24.5. It associates a unique cookie string with each user. This string is not reset upon logout (i.e., the user session is still considered valid and active), allowing an attacker who somehow gained access to a user's cookie to login as them.
References
Link | Resource |
---|---|
https://mantisbt.org/bugs/view.php?id=11296 | Issue Tracking Vendor Advisory |
https://mantisbt.org/bugs/view.php?id=27976 | Exploit Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-03-07T19:02:20
Updated: 2021-03-07T19:02:20
Reserved: 2021-03-07T00:00:00
Link: CVE-2009-20001
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-03-07T20:15:12.427
Modified: 2021-03-11T21:13:28.963
Link: CVE-2009-20001
JSON object: View
Redhat Information
No data.
CWE