Lucene search
Ubuntu.comUB:CVE-2010-4350HistoryJan 03, 2011 - 12:00 a.m.
CVE-2010-4350
2011-01-0300:00:00
ubuntu.com
ubuntu.com
12
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.024
Percentile
90.0%
Directory traversal vulnerability in admin/upgrade_unattended.php in
MantisBT before 1.2.4 allows remote attackers to include and execute
arbitrary local files via a … (dot dot) in the db_type parameter, related
to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.
Related
dsquare
dsquare
Mantisbt < 1.2.4 LFI
2012-04-08 00:00:00
cvelist
cvelist
CVE-2010-4350
2011-01-03 19:26:00
cve
cve
CVE-2010-4350
2011-01-03 20:00:43
nvd
nvd
CVE-2010-4350
2011-01-03 20:00:43
nessus
nessus
MantisBT 'db_type' Parameter Local File Inclusion
2010-12-22 00:00:00
Fedora 13 : mantis-1.1.8-5.fc13 (2010-19070)
2011-01-03 00:00:00
Fedora 14 : mantis-1.1.8-5.fc14 (2010-19078)
2011-01-03 00:00:00
prion
prion
Directory traversal
2011-01-03 20:00:00
exploitdb
exploitdb
Mantis Bug Tracker 1.2.3 - 'db_type' Local File Inclusion
2010-12-15 00:00:00
openvas
openvas
MantisBT < 1.2.4 Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT Multiple Vulnerabilities
2011-01-08 00:00:00
MantisBT <= 1.2.3 (db_type) Local File Inclusion Vulnerability
2010-12-15 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: mantis-1.1.8-5.fc14
2010-12-31 20:59:00
[SECURITY] Fedora 13 Update: mantis-1.1.8-5.fc13
2010-12-31 20:57:24
gentoo
gentoo
MantisBT: Multiple vulnerabilities
2012-11-08 00:00:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.024
Percentile
90.0%
Related for UB:CVE-2010-4350