mantisbt/mantisbt Security Advisories for 2.25.6 (2)
-
[HIGH] MantisBT Host Header Injection vulnerability
PKSA-h79w-zb4t-bjtf CVE-2024-23830 GHSA-mcqj-7p29-9528
Affected version: <2.26.1
Reported by:
GitHub -
[MEDIUM] MantisBT may disclose project names to unauthorized users
PKSA-v5jj-zbts-m2nv CVE-2023-44394 GHSA-v642-mh27-8j6m
Affected version: <=2.25.7
Reported by:
GitHub