CVE-2008-2276 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-2276
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2276

Description: Cross-site request forgery (CSRF) vulnerability in manage_user_create.php in Mantis 1.1.1 allows remote attackers to create new administrative users via a crafted link.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/42447 SAID Secunia Advisory: SA30270 Secunia Advisory: SA31171 Secunia Advisory: SA31972 MILW0RM http://www.milw0rm.com/exploits/5657 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200809-10.xml FEDORA CONFIRM http://sourceforge.net/project/shownotes.php?group_id=14963&release_id=595025 BUGTRAQ http://marc.info/?l=bugtraq&m=121130774617956&w=4 BID 29297

Return to the previous page.