[MEDIUM] MantisBT unauthorized users able to access private files

PKSA-z1yw-jjvh-1vjz CVE-2020-25781 GHSA-xjmx-cprh-646r

Affected package: mantisbt/mantisbt

Affected version: <2.24.3

Reported by:
GitHub