CVE-2006-6515

NameCVE-2006-6515
DescriptionMantis before 1.1.0a2 sets the default value of $g_bug_reminder_threshold to "reporter" instead of a more privileged role, which has unknown impact and attack vectors, possibly related to frequency of reminders.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
mantissource(unstable)1.0.6+dfsg-1unimportant

Notes

http://www.mantisbt.org/bugs/print_bug_page.php?bug_id=5163
Not a security bug, only a very annoying feature.

Search for package or bug name: Reporting problems