Unrated severityNVD Advisory· Published Oct 27, 2005· Updated Apr 16, 2026
CVE-2005-3335
CVE-2005-3335
Description
PHP file inclusion vulnerability in bug_sponsorship_list_view_inc.php in Mantis 1.0.0RC2 and 0.19.2 allows remote attackers to execute arbitrary PHP code and include arbitrary local files via the t_core_path parameter.
Affected products
2Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- bugs.mantisbt.org/changelog_page.phpnvdPatch
- secunia.com/advisories/16818nvdExploitPatchVendor Advisory
- secunia.com/secunia_research/2005-46/advisory/nvdExploitPatchVendor Advisory
- secunia.com/advisories/16506nvd
- secunia.com/advisories/17362nvd
- secunia.com/advisories/17654nvd
- securityreason.com/securityalert/121nvd
- securitytracker.com/idnvd
- www.debian.org/security/2005/dsa-905nvd
- www.gentoo.org/security/en/glsa/glsa-200510-24.xmlnvd
- www.securityfocus.com/bid/15212nvd
- www.securityfocus.com/bid/15227nvd
- www.vupen.com/english/advisories/2005/2221nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/22886nvd
News mentions
0No linked articles in our index yet.