Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MantisBT multiple security issues - Vulnerability Database

MantisBT multiple security issues

Description

MantisBT versions 1.2.18 and earlier contain multiple critical security vulnerabilities that allow unauthorized access and malicious attacks. These issues include cross-site scripting (XSS) vulnerabilities, improper access controls during installation, SQL injection flaws, CAPTCHA bypass mechanisms, and URL redirection weaknesses. The vulnerabilities affect core functionality including the installation process, user management interface, and authentication mechanisms. Organizations running any version in the 1.2.x series prior to 1.2.19 are at significant risk and should prioritize remediation.

Remediation

Immediately upgrade to MantisBT version 1.2.19 or later to remediate all identified vulnerabilities. Follow these steps:

  1. Backup your installation: Create complete backups of your MantisBT database and file system before proceeding
  2. Download the latest version: Obtain MantisBT 1.2.19 or newer from the official MantisBT website
  3. Review the upgrade guide: Consult the official MantisBT upgrade documentation for version-specific instructions
  4. Perform the upgrade: Follow the standard upgrade procedure, ensuring all files are properly replaced and database migrations are executed
  5. Secure the installation directory: After upgrade, ensure that install.php and the admin directory are removed or protected from public access
  6. Verify the installation: Confirm the upgrade was successful by checking the version number in the MantisBT interface
  7. Review access logs: Examine server logs for any suspicious activity that may indicate prior exploitation
  8. Reset credentials if compromised: If you suspect the installation was previously compromised, reset all user passwords and database credentials

For installations where immediate upgrade is not possible, implement temporary mitigations:
  • Remove or restrict access to install.php and admin/install.php at the web server level
  • Implement web application firewall (WAF) rules to filter malicious input
  • Restrict access to the MantisBT installation using IP whitelisting where feasible

References

MantisBT 1.2.19 Released
Multiple vulnerabilities in MantisBT

Related Vulnerabilities

XML external entity injection and XML injection High
Common tags: Information Disclosure XXE
Macromedia Dreamweaver remote database scripts High
Common tags: Information Disclosure SQL Injection
JBoss Seam remoting vulnerabilities High
Common tags: Information Disclosure XXE
Zend Framework local file disclosure via XXE injection High
Common tags: Information Disclosure XXE
WordPress Plugin Gallery-Flagallery Photo Portfolio SQL Injection and Information Disclosure Vulnerabilities (0.59) High
Common tags: Information Disclosure SQL Injection

Severity

High

Classification

CVE-2014-9571
CVE-2014-9572
CVE-2014-9573
CVE-2014-9624
CVE-2015-1042
CWE-200
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure
SQL Injection
URL Redirection
XXE