Full title: Mantis 1.1.3 - manage_proj_page PHP Code Execution Exploit 
Category: remote exploits
Platform: php
Mantis versions 1.1.3 and earlier are vulnerable to a post-authentication remote code execution vulnerability in the sort parameter of the manage_proj_page.php page.

# 0day.today @ http://0day.today/