Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2017-7615

Disclosure Date: April 16, 2017 (last updated November 26, 2024)
MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirm_hash value to verify.php.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0