Security Advisories - PKSA-gqfr-rmr1-1ny9 - Packagist

PKSA-gqfr-rmr1-1ny9 Security Advisory

[MEDIUM] MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php

PKSA-gqfr-rmr1-1ny9 CVE-2017-7309 GHSA-4w6c-3hcx-rfj5

Affected package: mantisbt/mantisbt

Affected version: >=2.2.0,<2.2.3|>=2.1.0,<2.1.3|<1.3.9

Reported by:
GitHub