CVE-2014-7146

The XmlImportExport plugin in MantisBT 1.2.17 and earlier allows remote attackers to execute arbitrary PHP code via a crafted (1) description field or (2) issuelink attribute in an XML file, which is not properly handled when executing the preg_replace function with the e modifier.

Published: Nov 18, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-7146
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
mantisbt / mantisbt	1.2.17	1.2.17.x

http://seclists.org/oss-sec/2014/q4/576
http://secunia.com/advisories/62101
http://www.debian.org/security/2015/dsa-3120
http://www.mantisbt.org/bugs/view.php?id=17725
http://www.securityfocus.com/bid/70993
https://exchange.xforce.ibmcloud.com/vulnerabilities/98572
https://github.com/mantisbt/mantisbt/commit/84017535
https://github.com/mantisbt/mantisbt/commit/bed19db9

Vulnerability Database

289,784

CVE-2014-7146