[HIGH] MantisBT Vulnerable to Stored XSS in File Download

PKSA-2yw5-k1t7-1bg1 CVE-2026-44657 GHSA-p6fr-rxq7-xcg8

Affected package: mantisbt/mantisbt

Affected version: <=2.28.1

Reported by:
GitHub