SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-03-05T15:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2014-02-28T00:00:00
Link: CVE-2014-2238
JSON object: View
NVD Information
Status : Modified
Published: 2014-03-05T16:37:41.047
Modified: 2017-08-29T01:34:29.997
Link: CVE-2014-2238
JSON object: View
Redhat Information
No data.
CWE