| CVE-2017-7615 |
high |
8.8 |
9.8 |
|
|
|
9y ago |
MantisBT allows arbitrary password reset |
| CVE-2026-44657 |
high |
— |
8.0 |
|
|
|
24d ago |
Mantis Bug Tracker (MantisBT) is an open source issue tracker. Prior to 2.28.2, using show_inline=1 parameter and a valid file_show_inline_token CSRF token on file_download.php, an attacker can execu… |
| CVE-2026-44655 |
high |
— |
8.0 |
|
|
|
24d ago |
Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 1.3.0 to 2.28.1, unescaped Project Name allows an attacker that can set it (which typically requires manager or administrator acces… |
| CVE-2026-42071 |
high |
— |
8.0 |
|
|
|
24d ago |
Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 2.23.0 to 2.28.1, a missing authorization check in MantisBT's file visibility function allows any authenticated user (REPORTER+) to… |
| CVE-2026-40607 |
high |
— |
8.0 |
|
|
|
24d ago |
MantisBT is Vulnerable to Stored XSS in Saved-Filter Owner Column |
| CVE-2026-40597 |
high |
— |
8.0 |
|
|
|
24d ago |
MantisBT has a Content Security Policy bypass via attachments |
| CVE-2026-40596 |
high |
— |
8.0 |
|
|
|
24d ago |
MantisBT is Vulnerable to XSS leading to account takeover via updating a user's font family preference |
| CVE-2026-34463 |
high |
— |
8.0 |
|
|
|
24d ago |
MantisBT is Vulnerable to Stored HTML Injection/XSS in Clone Issue Form |
| CVE-2017-7620 |
medium |
6.5 |
7.5 |
|
|
|
9y ago |
MantisBT vulnerable to CSRF and Open Redirect attacks |
| CVE-2017-12062 |
medium |
6.1 |
6.1 |
|
|
|
9y ago |
MantisBT vulnerable to XSS via unsanitized filter field in manage_user_page.php |
| CVE-2017-12061 |
medium |
6.1 |
6.1 |
|
|
|
9y ago |
MantisBT XSS allows unsanitized input via admin/install.php |
| CVE-2017-7897 |
medium |
6.1 |
6.1 |
|
|
|
9y ago |
MantisBT XSS via my_view_page.php and view_user_page.php |
| CVE-2026-42070 |
medium |
— |
5.5 |
|
|
|
24d ago |
Mantis Bug Tracker (MantisBT) is an open source issue tracker. Prior to 2.28.2, the mc_issue_update() function in MantisBT allows users having update_bug_threshold access (UPDATER, with default setti… |
| CVE-2026-41897 |
medium |
— |
5.5 |
|
|
|
24d ago |
Mantis Bug Tracker (MantisBT) is an open source issue tracker. From 1.0.0 to 2.28.1, lack of validation of filter_target parameter on return_dynamic_filters.php (normally used as an AJAX in View Issu… |
| CVE-2026-40598 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT has Potential Referer-Based Reflected HTML Injection / XSS in Tag Update Page |
| CVE-2026-34970 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT: Bugnote Revision Page Leaks Private Issue Metadata After Issue Access Is Revoked |
| CVE-2026-34744 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT has an authorization bypass that allows reading attachments after losing access to a private issue |
| CVE-2026-34579 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT has an authorization bypass in private issue monitoring |
| CVE-2026-34390 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT Vulnerable to Privilege Escalation from Manager to Administrator |
| CVE-2026-33052 |
medium |
— |
5.5 |
|
|
|
24d ago |
MantisBT Has Authorization Bypass in Global Profile Creation |
| CVE-2026-39960 |
medium |
5.4 |
5.4 |
|
|
|
24d ago |
MantisBT is Vulnerable to Stored XSS in Custom Field Textarea Values |
| CVE-2017-7309 |
medium |
4.8 |
4.8 |
|
|
|
9y ago |
MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php |
| CVE-2017-7241 |
medium |
4.8 |
4.8 |
|
|
|
9y ago |
MantisBT XSS via move_attachments_page.php |
| CVE-2017-6973 |
medium |
4.8 |
4.8 |
|
|
|
9y ago |
MantisBT XSS via adm_config_report.php's action parameter |
| CVE-2016-7111 |
medium |
4.7 |
4.7 |
|
|
|
9y ago |
MantisBT XSS through weak CSP when using Gravatar plugin |
| CVE-2026-34754 |
medium |
4.3 |
4.3 |
|
|
|
24d ago |
MantisBT has an Authorization Bypass that Allows Uploading Attachments to Private Issues via REST API |
| CVE-2010-2574 |
low |
— |
2.1 |
|
|
|
16y ago |
MantisBT Cross-site Scripting vulnerability |
| CVE-2020-28413 |
unknown |
— |
1.0 |
|
|
|
4y ago |
MantisBT SQL Injection via mc_project_get_users function |
| CVE-2019-15715 |
unknown |
— |
1.0 |
|
|
|
4y ago |
MantisBT Remote Code Execution |
| CVE-2026-33548 |
unknown |
— |
— |
|
|
|
2mo ago |
MantisBT has Stored HTML Injection/XSS when displaying Tags in Timeline |
| CVE-2026-33517 |
unknown |
— |
— |
|
|
|
2mo ago |
MantisBT Vulnerable to Stored HTML Injection in Tag Delete Confirmation |
| CVE-2026-30849 |
unknown |
— |
— |
|
|
|
2mo ago |
MantisBT is vulnerable to authentication bypass through the SOAP API on MySQL |
| CVE-2025-62520 |
unknown |
— |
— |
|
|
|
7mo ago |
MantisBT unauthorized disclosure of private project column configuration |
| CVE-2025-55155 |
unknown |
— |
— |
|
|
|
7mo ago |
MantisBT lacks verification when changing a user's email address |
| CVE-2025-46556 |
unknown |
— |
— |
|
|
|
7mo ago |
MantisBT Vulnerable to Denial-of-Service (DoS) via Excessive Note Length |
| CVE-2025-47776 |
unknown |
— |
— |
|
|
|
7mo ago |
MantisBT vulnerable to authentication bypass for some passwords due to PHP type juggling |
| CVE-2024-45792 |
unknown |
— |
— |
|
|
|
2y ago |
MantisBT vulnerable to information disclosure with user profiles |
| CVE-2024-34081 |
unknown |
— |
— |
|
|
|
2y ago |
Mantis Bug Tracker (MantisBT) vulnerable to cross-site scripting |
| CVE-2024-34080 |
unknown |
— |
— |
|
|
|
2y ago |
MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor |
| CVE-2024-34077 |
unknown |
— |
— |
|
|
|
2y ago |
Mantis Bug Tracker (MantisBT) allows user account takeover in the signup/reset password process |
| CVE-2024-23830 |
unknown |
— |
— |
|
|
|
2y ago |
MantisBT Host Header Injection vulnerability |
| CVE-2023-44394 |
unknown |
— |
— |
|
|
|
3y ago |
MantisBT may disclose project names to unauthorized users |
| CVE-2023-22476 |
unknown |
— |
— |
|
|
|
3y ago |
MantisBT may expose private issues' summaries to unauthorized users |
| CVE-2022-33910 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT XSS through crafted SVG documents in file_download.php |
| CVE-2021-33557 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows XSS in manage_custom_field_edit_page.php |
| CVE-2020-35571 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT XSS in manage_custom_field_update.php |
| CVE-2020-29603 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT Insecure Storage in manage_proj_edit_page.php |
| CVE-2020-29604 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT Missing Authorization access check in bug_actiongroup.php |
| CVE-2020-29605 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT Incorrect Authorization in bug_actiongroup_page.php |
| CVE-2020-35849 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT Incorrect Authorization for bug_revision_view_page.php check |
| CVE-2020-25830 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT HTML Injection vulnerability |
| CVE-2020-25781 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT unauthorized users able to access private files |
| CVE-2020-25288 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT XXS where a Custom Field with a crafted Regular Expression property is used |
| CVE-2020-16266 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT XSS issue on the view_all_bug_page.php |
| CVE-2019-15539 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT XSS when uploading an attachment |
| CVE-2019-15074 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows cross-site scripting (XSS) via crafted filename |
| CVE-2018-16514 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFO |
| CVE-2018-14504 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows XSS on the Edit Filter page via crafted filter name |
| CVE-2018-13055 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows XSS via View Filters page |
| CVE-2018-17783 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows XSS via Edit Filter page |
| CVE-2018-17782 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT allows XSS via the Manage Filter page |
| CVE-2022-28508 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php |
| CVE-2009-20001 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT Insufficient Session Expiration cookie string not reset after logout |
| CVE-2021-43257 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT CSV Injection unprivileged user access in csv_export.php |
| CVE-2022-26144 |
unknown |
— |
— |
|
|
|
4y ago |
MantisBT vulnerable to XSS due to improper escape in manage_plugin_page.php and manage_plugin_uninstall.php |
