mantisbt/mantisbt vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2024-34081Mediummantisbt/mantisbt: Mantis Bug Tracker (MantisBT) vulnerable to cross-site scripting CVE-2024-34080Mediummantisbt/mantisbt: MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized ActorCVE-2024-34077Highmantisbt/mantisbt: Mantis Bug Tracker (MantisBT) allows user account takeover in the signup/reset password processCVE-2024-23830Highmantisbt/mantisbt: MantisBT Host Header Injection vulnerabilityCVE-2023-44394Mediummantisbt/mantisbt: MantisBT may disclose project names to unauthorized users CVE-2023-22476Mediummantisbt/mantisbt: MantisBT may expose private issues' summaries to unauthorized usersCVE-2022-33910Mediummantisbt/mantisbt: MantisBT XSS through crafted SVG documents in file_download.phpCVE-2021-33557Mediummantisbt/mantisbt: MantisBT allows XSS in manage_custom_field_edit_page.phpCVE-2020-35571Mediummantisbt/mantisbt: MantisBT XSS in manage_custom_field_update.phpCVE-2020-29605Mediummantisbt/mantisbt: MantisBT Incorrect Authorization in bug_actiongroup_page.phpCVE-2020-29603Mediummantisbt/mantisbt: MantisBT Insecure Storage in manage_proj_edit_page.phpCVE-2020-29604Mediummantisbt/mantisbt: MantisBT Missing Authorization access check in bug_actiongroup.phpCVE-2020-35849Highmantisbt/mantisbt: MantisBT Incorrect Authorization for bug_revision_view_page.php checkCVE-2020-28413Mediummantisbt/mantisbt: MantisBT SQL Injection via mc_project_get_users functionCVE-2020-25830Mediummantisbt/mantisbt: MantisBT HTML Injection vulnerabilityCVE-2020-25781Mediummantisbt/mantisbt: MantisBT unauthorized users able to access private filesCVE-2020-25288Mediummantisbt/mantisbt: MantisBT XXS where a Custom Field with a crafted Regular Expression property is usedCVE-2020-16266Mediummantisbt/mantisbt: MantisBT XSS issue on the view_all_bug_page.php CVE-2019-15539Mediummantisbt/mantisbt: MantisBT XSS when uploading an attachmentCVE-2019-15715Highmantisbt/mantisbt: MantisBT Remote Code ExecutionCVE-2019-15074Mediummantisbt/mantisbt: MantisBT allows cross-site scripting (XSS) via crafted filenameCVE-2018-16514Mediummantisbt/mantisbt: MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFOCVE-2016-7111Mediummantisbt/mantisbt: MantisBT XSS through weak CSP when using Gravatar pluginCVE-2017-7620Mediummantisbt/mantisbt: MantisBT vulnerable to CSRF and Open Redirect attacksCVE-2017-7897Mediummantisbt/mantisbt: MantisBT XSS via my_view_page.php and view_user_page.php

Stop the waste.
Protect your environment with Kodem.