[MEDIUM] MantisBT XSS when uploading an attachment

PKSA-srf3-2rxv-55nf CVE-2019-15539 GHSA-p495-jrpq-p66g

Affected package: mantisbt/mantisbt

Affected version: <2.21.3

Reported by:
GitHub