CRITICAL9.1CVE-2025-47776MantisBT vulnerable to authentication bypass for some passwords due to PHP type juggling from 0, < 2.27.2
>= 1.3.0-rc.2, < 1.3.10
from 0, < 2.26.1
HIGH8.1MantisBT Insufficient Session Expiration cookie string not reset after logout
from 0, < 2.24.5
HIGH7.8MantisBT CSV Injection unprivileged user access in csv_export.php
from 0, < 2.25.3
HIGH7.5MantisBT Incorrect Authorization for bug_revision_view_page.php check
from 0, < 2.24.4
HIGH7.3Mantis Bug Tracker (MantisBT) allows user account takeover in the signup/reset password process
from 0, < 2.26.2
HIGH7.2MantisBT Remote Code Execution
from 0, < 1.3.20
MEDIUM6.6Mantis Bug Tracker (MantisBT) vulnerable to cross-site scripting
from 0, < 2.26.2
MEDIUM6.5MantisBT Vulnerable to Denial-of-Service (DoS) via Excessive Note Length
from 0, < 2.27.2
MEDIUM6.5MantisBT Missing Authorization access check in bug_actiongroup.php
from 0, < 2.24.4
MEDIUM6.5MantisBT vulnerable to CSRF and Open Redirect attacks
from 0, < 1.3.11
MEDIUM6.1MantisBT has Stored HTML Injection/XSS when displaying Tags in Timeline
>= 2.28.0, < 2.28.2
MEDIUM6.1MantisBT allows XSS in manage_custom_field_edit_page.php
from 0, < 2.25.2
MEDIUM6.1MantisBT XSS in manage_custom_field_update.php
from 0, < 2.25.0
MEDIUM6.1MantisBT XSS when uploading an attachment
from 0, < 2.21.3
MEDIUM6.1MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFO
>= 2.1.0, < 2.17.1
MEDIUM6.1MantisBT XSS via my_view_page.php and view_user_page.php
>= 2.3.0, < 2.3.2
MEDIUM6.1MantisBT vulnerable to XSS via unsanitized filter field in manage_user_page.php
>= 2.0.0, < 2.5.2
MEDIUM6.1MantisBT allows XSS on the Edit Filter page via crafted filter name
>= 2.0.0, < 2.15.1
MEDIUM6.1MantisBT allows XSS via View Filters page
>= 2.1.0, < 2.15.1
MEDIUM6.1MantisBT XSS allows unsanitized input via admin/install.php
from 0, < 1.3.12
MEDIUM6.1MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php
from 0, <= 2.25.2
MEDIUM6.1MantisBT vulnerable to XSS due to improper escape in manage_plugin_page.php and manage_plugin_uninstall.php
from 0, < 2.25.3
MEDIUM5.4MantisBT is Vulnerable to Stored XSS in Custom Field Textarea Values
from 0, < 2.28.2
MEDIUM5.4MantisBT lacks verification when changing a user's email address
from 0, < 2.27.2
MEDIUM5.4MantisBT XSS through crafted SVG documents in file_download.php
from 0, < 2.25.5
MEDIUM5.4MantisBT XSS issue on the view_all_bug_page.php
>= 2.1.0, < 2.24.2
MEDIUM5.4MantisBT allows XSS via Edit Filter page
>= 2.1.0, < 2.17.2
MEDIUM5.4MantisBT allows XSS via the Manage Filter page
>= 2.1.0, < 2.17.2
MEDIUM5.3MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
from 0, < 2.26.2
MEDIUM5.3MantisBT SQL Injection via mc_project_get_users function
from 0, < 2.24.4
MEDIUM4.8MantisBT HTML Injection vulnerability
from 0, < 2.24.3
MEDIUM4.8MantisBT XXS where a Custom Field with a crafted Regular Expression property is used
>= 2.23.0, < 2.24.3
MEDIUM4.8MantisBT XSS via adm_config_report.php's action parameter
from 0, < 1.3.8
MEDIUM4.8MantisBT XSS via move_attachments_page.php
from 0, < 1.3.9
MEDIUM4.8MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php
from 0, < 1.3.9
MEDIUM4.7MantisBT XSS through weak CSP when using Gravatar plugin
from 0, < 1.3.1
MEDIUM4.3MantisBT has an Authorization Bypass that Allows Uploading Attachments to Private Issues via REST API
from 0, < 2.28.2
MEDIUM4.3MantisBT unauthorized disclosure of private project column configuration
from 0, < 2.27.2
MEDIUM4.3MantisBT vulnerable to information disclosure with user profiles
from 0, < 2.26.4
MEDIUM4.3MantisBT may disclose project names to unauthorized users
from 0, < 2.25.8
MEDIUM4.3MantisBT may expose private issues' summaries to unauthorized users
from 0, < 2.25.6
MEDIUM4.3MantisBT Insecure Storage in manage_proj_edit_page.php
from 0, < 2.24.4
MEDIUM4.3MantisBT unauthorized users able to access private files
from 0, < 2.24.3
—MantisBT Vulnerable to Stored XSS in File Download
from 0, < 2.28.2
—MantisBT has Stored XSS on Move Attachments Admin Page
>= 1.3.0, < 2.28.2
—MantisBT has a Private Bugnote Attachment Content Leak via REST API
>= 2.23.0, < 2.28.2
—MantisBT: Authorization Bypass in Bugnote Editing via Issue Update API
from 0, < 2.28.2
—MantisBT is Vulnerable to Reflected XSS in Rendering Dynamic Custom Textarea Field
>= 1.0.0, < 2.28.2
—MantisBT is Vulnerable to Stored XSS in Saved-Filter Owner Column
>= 2.1.0, < 2.28.2
—MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page
from 0, < 2.28.2
—MantisBT has a Content Security Policy bypass via attachments
from 0, < 2.28.2
—MantisBT is Vulnerable to XSS leading to account takeover via updating a user's font family preference
>= 2.11.0, < 2.28.2
—MantisBT: Bugnote Revision Page Leaks Private Issue Metadata After Issue Access Is Revoked
from 0, < 2.28.2
—MantisBT has an authorization bypass that allows reading attachments after losing access to a private issue
from 0, < 2.28.2
—MantisBT has an authorization bypass in private issue monitoring
>= 2.26.1, < 2.28.2
—MantisBT is Vulnerable to Stored HTML Injection/XSS in Clone Issue Form
from 0, < 2.28.2
—MantisBT Vulnerable to Privilege Escalation from Manager to Administrator
from 0, < 2.28.2
—MantisBT Has Authorization Bypass in Global Profile Creation
>= 2.28.0, < 2.28.2
—MantisBT Vulnerable to Stored HTML Injection in Tag Delete Confirmation
>= 2.28.0, < 2.28.1
—MantisBT is vulnerable to authentication bypass through the SOAP API on MySQL
from 0, < 2.28.1
—MantisBT Incorrect Authorization in bug_actiongroup_page.php
from 0, < 2.24.4
—MantisBT allows cross-site scripting (XSS) via crafted filename
from 0, < 2.21.2
—MantisBT Cross-site Scripting vulnerability
from 0, <= 1.2.2