CVE-2017-12419

Name of the Vulnerable Software and Affected Versions MantisBT versions through 2.5.2

Description The issue arises when the 'admin' directory is not removed after installation, and the MySQL client has the local infile setting enabled. This allows an attacker to exploit MySQL's "connect file read" feature, potentially enabling remote access to files on the MantisBT server.

Recommendations For MantisBT versions through 2.5.2, remove the 'admin' directory as recommended in the "Post-installation and upgrade tasks" section of the MantisBT Admin Guide to prevent exploitation. Additionally, consider disabling the local infile setting in the MySQL client configuration, such as by setting mysqli.allow local infile to 0 in php.ini, to minimize the risk of remote file access.