Vulnerability Details : CVE-2014-2238
Public exploit exists!
SQL injection vulnerability in the manage configuration page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.16 allows remote authenticated administrators to execute arbitrary SQL commands via the filter_config_id parameter.
Vulnerability category: Sql Injection
Exploit prediction scoring system (EPSS) score for CVE-2014-2238
Probability of exploitation activity in the next 30 days: 0.40%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 73 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2014-2238
-
MantisBT Admin SQL Injection Arbitrary File Read
Disclosure Date: 2014-02-28First seen: 2020-04-26auxiliary/gather/mantisbt_admin_sqliVersions 1.2.13 through 1.2.16 are vulnerable to a SQL injection attack if an attacker can gain access to administrative credentials. This vuln was fixed in 1.2.17. Authors: - Jakub Galczyk - Brandon Perry <bperry.volatile@gmail.com>
CVSS scores for CVE-2014-2238
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:P |
8.0
|
6.4
|
NIST |
CWE ids for CVE-2014-2238
-
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-2238
-
http://seclists.org/oss-sec/2014/q1/490
oss-sec: Re: CVE request: MantisBT 1.2.13 SQL injection vulnerabilityPatch
-
http://www.mantisbt.org/blog/?p=288
MantisBT 1.2.17 Released – Mantis Bug Tracker – BlogVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/91563
MantisBT adm_config_report.php SQL injection CVE-2014-2238 Vulnerability Report
-
http://www.securityfocus.com/bid/65903
MantisBT 'adm_config_report.php' SQL Injection VulnerabilityExploit
-
http://seclists.org/oss-sec/2014/q1/456
oss-sec: CVE request: MantisBT 1.2.13 SQL injection vulnerability
-
http://mantisbt.domainunion.de/bugs/view.php?id=17055
Vendor Advisory
Products affected by CVE-2014-2238
- cpe:2.3:a:mantisbt:mantisbt:1.2.13:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.2.15:*:*:*:*:*:*:*
- cpe:2.3:a:mantisbt:mantisbt:1.2.16:*:*:*:*:*:*:*