NuytsTech Security

CVE-2012-1121

by ·

MantisBT before 1.2.9 does not properly check permissions, which allows remote authenticated users with manager privileges to (1) modify or (2) delete global categories.

Date published : 2012-06-29

http://www.securityfocus.com/bid/52313

http://www.mantisbt.org/bugs/changelog_page.php?version_id=140

Tags: