CVE-2012-1121

Published June 29th, 2012

View on NVD ↗

CVSS v3

N/A

CVSS v2

4.9

MEDIUM

Affected

PROJECT

Description

MantisBT before 1.2.9 does not properly check permissions, which allows remote authenticated users with manager privileges to (1) modify or (2) delete global categories.

mantisbt/mantisbt

Mantis Bug Tracker (MantisBT)

GitHub

1.78K