VYPR
Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Jun 16, 2026

CVE-2002-1110

CVE-2002-1110

Description

Multiple SQL injection vulnerabilities in Mantis 0.17.2 and earlier, when running without magic_quotes_gpc enabled, allows remote attackers to gain privileges or perform unauthorized database operations via modified form fields, e.g. to account_update.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16
  • Mantisbt/Mantis16 versions
    cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.11:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.12:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.3:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.8:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.15.9:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.16.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.16.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.17.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.17.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mantis:mantis:0.17.2:*:*:*:*:*:*:*
    • (no CPE)range: <=0.17.2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.