Unrated severityNVD Advisory· Published Jan 26, 2015· Updated Jun 17, 2026
CVE-2014-9573
CVE-2014-9573
Description
SQL injection vulnerability in manage_user_page.php in MantisBT before 1.2.19 and 1.3.x before 1.3.0-beta.2 allows remote administrators with FILE privileges to execute arbitrary SQL commands via the MANTIS_MANAGE_USERS_COOKIE cookie.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
8- seclists.org/oss-sec/2015/q1/157nvdExploit
- www.mantisbt.org/bugs/view.phpnvdExploit
- www.securitytracker.com/id/1031633nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/100210nvd
- github.com/mantisbt/mantisbt/commit/69c2d28dnvd
- github.com/mantisbt/mantisbt/commit/7cc4539fnvd
- www.htbridge.com/advisory/HTB23243nvd
- www.mantisbt.org/bugs/view.phpnvd
News mentions
0No linked articles in our index yet.