← CVECheck
HomeVulnerabilities

CVE-2002-1112 — MEDIUM severity vulnerability (Mantis before 0.17.4 allows remote attackers to list project)

Mantis before 0.17.4 allows remote attackers to list project bugs without authentication by modifying the cookie that is used by the "View Bugs" page.

CVE IDCVE-2002-1112
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionMantis before 0.17.4 allows remote attackers to list project bugs without authentication by modifying the cookie that is used by the "View Bugs" page.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →