Security Advisories - PKSA-g674-s94j-gf23 - Packagist

PKSA-g674-s94j-gf23 Security Advisory

[HIGH] MantisBT allows arbitrary password reset

PKSA-g674-s94j-gf23 CVE-2017-7615 GHSA-252r-f55f-ff34

Affected package: mantisbt/mantisbt

Affected version: >=2.3.0,<2.3.1|>=2.0.0,<2.2.4|>=1.3.0-rc.2,<1.3.10

Reported by:
GitHub