CVE-2012-1121

N/A Unknown
Published: June 29, 2012 Modified: April 29, 2026
View on NVD

Description

MantisBT before 1.2.9 does not properly check permissions, which allows remote authenticated users with manager privileges to (1) modify or (2) delete global categories.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092926.html
Source: secalert@redhat.com
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093063.html
Source: secalert@redhat.com
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093064.html
Source: secalert@redhat.com
http://secunia.com/advisories/48258
Source: secalert@redhat.com
Vendor Advisory
http://secunia.com/advisories/51199
Source: secalert@redhat.com
http://security.gentoo.org/glsa/glsa-201211-01.xml
Source: secalert@redhat.com
http://www.mantisbt.org/bugs/changelog_page.php?version_id=140
Source: secalert@redhat.com
http://www.mantisbt.org/bugs/view.php?id=13561
Source: secalert@redhat.com
http://www.openwall.com/lists/oss-security/2012/03/06/9
Source: secalert@redhat.com
http://www.securityfocus.com/bid/52313
Source: secalert@redhat.com
https://github.com/mantisbt/mantisbt/commit/9443258724e84cb388aa1865b775beaecd80596d
Source: secalert@redhat.com
Exploit Patch
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092926.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093063.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://lists.fedoraproject.org/pipermail/package-announce/2012-November/093064.html
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/48258
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://secunia.com/advisories/51199
Source: af854a3a-2127-422b-91ae-364da2661108
http://security.gentoo.org/glsa/glsa-201211-01.xml
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mantisbt.org/bugs/changelog_page.php?version_id=140
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.mantisbt.org/bugs/view.php?id=13561
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2012/03/06/9
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/52313
Source: af854a3a-2127-422b-91ae-364da2661108
https://github.com/mantisbt/mantisbt/commit/9443258724e84cb388aa1865b775beaecd80596d
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch

22 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
2.2%
81th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-264

Affected Vendors

mantisbt

Related CVEs

CVE-2026-9677 N/A
CVE-2026-13245 6.1
CVE-2026-12404 5.3
CVE-2026-10820 N/A
CVE-2026-12415 9.8