CVE-2014-9573 : SQL injection vulnerability in manage_user

SQL injection vulnerability in manage_user_page.php in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote administrators with FILE privileges to execute arbitrary SQL commands via the MANTIS_MANAGE_USERS_COOKIE cookie.

Published 2015-01-26 15:59:13

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: Sql Injection

Products affected by CVE-2014-9573

Mantisbt » Mantisbt
Versions up to, including, (<=) 1.2.18
cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*
Matching versions
Mantisbt » Mantisbt » Version: 1.3.0 Update Beta1
cpe:2.3:a:mantisbt:mantisbt:1.3.0:beta1:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2014-9573

EPSS FAQ

0.40%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 58 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2014-9573

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.0	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:P	6.8	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2014-9573

CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-9573

https://www.mantisbt.org/bugs/view.php?id=17937

0017937: MantisBT Security Vulnerability Notification (HTB23243) - MantisBT

CVEs referencing this url
https://www.mantisbt.org/bugs/view.php?id=17940

0017940: CVE-2014-9573: SQL Injection in manage_user_page.php - MantisBT
Exploit
http://www.securitytracker.com/id/1031633

MantisBT Bugs Permit Remote Cross-Site Scripting, SQL Injection, and Security Bypass Attacks - SecurityTracker

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/100210

MantisBT manage_user_page.php SQL injection CVE-2014-9573 Vulnerability Report
https://github.com/mantisbt/mantisbt/commit/69c2d28d

Fix SQL injection in manage_user_page.php · mantisbt/mantisbt@69c2d28 · GitHub
http://seclists.org/oss-sec/2015/q1/157

oss-sec: CVE-2014-9573: SQL Injection in manage_user_page.php
Exploit
https://www.htbridge.com/advisory/HTB23243

Multiple vulnerabilities in MantisBT - HTB23243 Security Advisory | ImmuniWeb

CVEs referencing this url
https://github.com/mantisbt/mantisbt/commit/7cc4539f

Fix SQL injection in manage_user_page.php · mantisbt/mantisbt@7cc4539 · GitHub

Jump to

Vulnerability Details : CVE-2014-9573

Products affected by CVE-2014-9573

Exploit prediction scoring system (EPSS) score for CVE-2014-9573

CVSS scores for CVE-2014-9573

CWE ids for CVE-2014-9573

References for CVE-2014-9573