[MEDIUM] MantisBT has an authorization bypass in private issue monitoring

PKSA-wqq3-5hnc-g52v CVE-2026-34579 GHSA-ggw7-9675-6v4v

Affected package: mantisbt/mantisbt

Affected version: >=2.26.1,<=2.28.1

Reported by:
GitHub