oss-sec mailing list archives
Re: CVE-2014-8598: MantisBT XML Import/Export plugin unrestricted access
From: Hanno Böck <hanno () hboeck de>
Date: Fri, 14 Nov 2014 13:04:29 +0100
Hi, What's holding this up? As far as I read the oss-sec archive there are three unfixed mantis vulnerabilities, one of them an sql injection, and the release supposed to fix them is still not there (it's been two weeks since the first issue hit oss-security). Makes me feel mantis isn't really handling security issues in a responsible way :-( cu, -- Hanno Böck http://hboeck.de/ mail/jabber: hanno () hboeck de GPG: BBB51E42
Attachment:
signature.asc
Description:
Current thread:
- CVE-2014-8598: MantisBT XML Import/Export plugin unrestricted access Damien Regad (Nov 07)
- Re: CVE-2014-8598: MantisBT XML Import/Export plugin unrestricted access Hanno Böck (Nov 14)
- Re: CVE-2014-8598: MantisBT XML Import/Export plugin unrestricted access Damien Regad (Nov 14)
- Re: CVE-2014-8598: MantisBT XML Import/Export plugin unrestricted access Hanno Böck (Nov 14)