Описание
Mantis before 1.1.0a2 sets the default value of $g_bug_reminder_threshold to "reporter" instead of a more privileged role, which has unknown impact and attack vectors, possibly related to frequency of reminders.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mantis | fixed | 1.0.6+dfsg-1 | package |
Примечания
http://www.mantisbt.org/bugs/print_bug_page.php?bug_id=5163
Not a security bug, only a very annoying feature.
EPSS
Процентиль: 58%
0.00376
Низкий
Связанные уязвимости
nvd
почти 19 лет назад
Mantis before 1.1.0a2 sets the default value of $g_bug_reminder_threshold to "reporter" instead of a more privileged role, which has unknown impact and attack vectors, possibly related to frequency of reminders.
github
больше 3 лет назад
Mantis before 1.1.0a2 sets the default value of $g_bug_reminder_threshold to "reporter" instead of a more privileged role, which has unknown impact and attack vectors, possibly related to frequency of reminders.
EPSS
Процентиль: 58%
0.00376
Низкий