Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Jun 16, 2026
CVE-2002-1112
CVE-2002-1112
Description
Mantis before 0.17.4 allows remote attackers to list project bugs without authentication by modifying the cookie that is used by the "View Bugs" page.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
17cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:mantis:mantis:0.15.10:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.11:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.12:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.3:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.4:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.5:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.6:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.7:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.8:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.15.9:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.16.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.16.1:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.17.0:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.17.1:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.17.2:*:*:*:*:*:*:*
- cpe:2.3:a:mantis:mantis:0.17.3:*:*:*:*:*:*:*
- (no CPE)range: <0.17.4
Patches
Vulnerability mechanics
References
5- www.debian.org/security/2002/dsa-153nvdPatchVendor Advisory
- www.securityfocus.com/bid/5514nvdPatchVendor Advisory
- mantisbt.sourceforge.net/advisories/2002/2002-03.txtnvd
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/9899nvd
News mentions
0No linked articles in our index yet.