{"url":"http://public2.vulnerablecode.io/api/packages/63083?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.15.1","type":"composer","namespace":"mantisbt","name":"mantisbt","version":"2.15.1","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.26.4","latest_non_vulnerable_version":"2.28.2","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/54783?format=json","vulnerability_id":"VCID-1n7b-6pyz-cka5","summary":"Mantis Bug Tracker (MantisBT) allows user account takeover in the signup/reset password process\nInsufficient access control in the registration and password reset process allows an attacker to reset another user's password and takeover their account, if the victim has an incomplete request pending.\n\nThe exploit is only possible while the verification token is valid, i.e for 5 minutes after the confirmation URL sent by e-mail has been opened, and the user did not complete the process by updating their password.\n\nA brute-force attack calling account_update.php with increasing user IDs is possible.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34077","reference_id":"","reference_type":"","scores":[{"value":"0.00225","scoring_system":"epss","scoring_elements":"0.45324","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34077"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/92d11a01b195a1b6717a2f205218089158ea6d00","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T19:51:24Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/92d11a01b195a1b6717a2f205218089158ea6d00"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=34433","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T19:51:24Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=34433"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34077","reference_id":"CVE-2024-34077","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34077"},{"reference_url":"https://github.com/advisories/GHSA-93x3-m7pw-ppqm","reference_id":"GHSA-93x3-m7pw-ppqm","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-93x3-m7pw-ppqm"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-93x3-m7pw-ppqm","reference_id":"GHSA-93x3-m7pw-ppqm","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T19:51:24Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-93x3-m7pw-ppqm"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/81243?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.26.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8676-5hmd-s3hm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.26.2"}],"aliases":["CVE-2024-34077","GHSA-93x3-m7pw-ppqm"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1n7b-6pyz-cka5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/112159?format=json","vulnerability_id":"VCID-1nq1-6hwz-7kcq","summary":"MantisBT HTML Injection vulnerability\nAn issue was discovered in MantisBT before 2.24.3. Improper escaping of a custom field's name allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript when attempting to update said custom field via `bug_actiongroup_page.php`.","references":[{"reference_url":"http://github.com/mantisbt/mantisbt/commit/8c6f4d8859785b67fb80ac65100ac5259ed9237d","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://github.com/mantisbt/mantisbt/commit/8c6f4d8859785b67fb80ac65100ac5259ed9237d"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25830","reference_id":"","reference_type":"","scores":[{"value":"0.00596","scoring_system":"epss","scoring_elements":"0.69756","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00596","scoring_system":"epss","scoring_elements":"0.69716","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25830"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27304","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27304"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25830","reference_id":"","reference_type":"","scores":[{"value":"4.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25830"},{"reference_url":"https://github.com/advisories/GHSA-2pm7-q8pc-xhvq","reference_id":"GHSA-2pm7-q8pc-xhvq","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-2pm7-q8pc-xhvq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150408?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.3"}],"aliases":["CVE-2020-25830","GHSA-2pm7-q8pc-xhvq"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1nq1-6hwz-7kcq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/112321?format=json","vulnerability_id":"VCID-1v33-u5bm-pyem","summary":"MantisBT Remote Code Execution\nMantisBT before 1.3.20 and 2.22.1 allows Post Authentication Command Injection, leading to Remote Code Execution.","references":[{"reference_url":"http://packetstormsecurity.com/files/159219/Mantis-Bug-Tracker-2.3.0-Remote-Code-Execution.html","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/159219/Mantis-Bug-Tracker-2.3.0-Remote-Code-Execution.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15715","reference_id":"","reference_type":"","scores":[{"value":"0.2133","scoring_system":"epss","scoring_elements":"0.95799","published_at":"2026-06-05T12:55:00Z"},{"value":"0.2133","scoring_system":"epss","scoring_elements":"0.95795","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15715"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/5fb979604d88c630343b3eaf2b435cd41918c501","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/5fb979604d88c630343b3eaf2b435cd41918c501"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/7092573fac31eff41823f13540324db167c8bd52","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/7092573fac31eff41823f13540324db167c8bd52"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/cebfb9acb3686e8904d80bd4bc80720b54ba08e5","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/cebfb9acb3686e8904d80bd4bc80720b54ba08e5"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/fc7668c8e45db55fc3a4b991ea99d2b80861a14c","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/fc7668c8e45db55fc3a4b991ea99d2b80861a14c"},{"reference_url":"https://mantisbt.org/bugs/changelog_page.php?project=mantisbt","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/changelog_page.php?project=mantisbt"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=26091","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=26091"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=26162","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=26162"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15715","reference_id":"","reference_type":"","scores":[{"value":"7.2","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15715"},{"reference_url":"https://github.com/advisories/GHSA-v23g-wjvq-2fpf","reference_id":"GHSA-v23g-wjvq-2fpf","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-v23g-wjvq-2fpf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/155615?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.22.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.22.1"}],"aliases":["CVE-2019-15715","GHSA-v23g-wjvq-2fpf"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1v33-u5bm-pyem"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111910?format=json","vulnerability_id":"VCID-516n-s5ts-eyg8","summary":"MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFO\nA cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) and Edit Filter page (manage_filter_edit_page.php) in MantisBT 2.1.0 through 2.17.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-13055.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16514","reference_id":"","reference_type":"","scores":[{"value":"0.00253","scoring_system":"epss","scoring_elements":"0.48797","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00253","scoring_system":"epss","scoring_elements":"0.48859","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-16514"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/blob/006cd0cd90c37097e1a065fd3e59ce2534490834/core/filter_form_api.php#L2779","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/blob/006cd0cd90c37097e1a065fd3e59ce2534490834/core/filter_form_api.php#L2779"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/66091a42626631a3063774eb0fb8a4218ab22fd4","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/66091a42626631a3063774eb0fb8a4218ab22fd4"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=24731","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=24731"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-16514","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-16514"},{"reference_url":"https://github.com/advisories/GHSA-3qv7-98vm-xx2v","reference_id":"GHSA-3qv7-98vm-xx2v","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-3qv7-98vm-xx2v"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/154394?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.17.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-6tnt-m23j-pyhv"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-hz9e-tmbf-uydt"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-m956-44xf-2qfz"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.17.1"}],"aliases":["CVE-2018-16514","GHSA-3qv7-98vm-xx2v"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-516n-s5ts-eyg8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/112039?format=json","vulnerability_id":"VCID-5mtg-nbrw-jyhp","summary":"MantisBT Missing Authorization access check in bug_actiongroup.php\nAn issue was discovered in MantisBT before 2.24.4. A missing access check in bug_actiongroup.php allows an attacker (with rights to create new issues) to use the COPY group action to create a clone, including all bugnotes and attachments, of any private issue (i.e., one having Private view status, or belonging to a private Project) via the bug_arr[] parameter. This provides full access to potentially confidential information.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29604","reference_id":"","reference_type":"","scores":[{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.4374","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43811","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29604"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/b2da7352b0ad31fa5f925eaacb4b2b96a6cec8e8","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/b2da7352b0ad31fa5f925eaacb4b2b96a6cec8e8"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27357","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27357"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27728","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27728"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29604","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29604"},{"reference_url":"https://github.com/advisories/GHSA-f38c-wxp6-8xjv","reference_id":"GHSA-f38c-wxp6-8xjv","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f38c-wxp6-8xjv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/152011?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.4"}],"aliases":["CVE-2020-29604","GHSA-f38c-wxp6-8xjv"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5mtg-nbrw-jyhp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44071?format=json","vulnerability_id":"VCID-6tnt-m23j-pyhv","summary":"MantisBT allows XSS via Edit Filter page\nA cross-site scripting (XSS) vulnerability in the Edit Filter page (manage_filter_edit page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17783","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.38935","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39023","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17783"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/b9453cd7643b7c5b1b8c716b1dbd4d7d9571d1ec","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/b9453cd7643b7c5b1b8c716b1dbd4d7d9571d1ec"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/613","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/613"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=24814","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=24814"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-17783","reference_id":"CVE-2018-17783","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-17783"},{"reference_url":"https://github.com/advisories/GHSA-gcqw-45xq-xc63","reference_id":"GHSA-gcqw-45xq-xc63","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-gcqw-45xq-xc63"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/62992?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.17.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-m956-44xf-2qfz"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.17.2"}],"aliases":["CVE-2018-17783","GHSA-gcqw-45xq-xc63"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6tnt-m23j-pyhv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/55908?format=json","vulnerability_id":"VCID-8676-5hmd-s3hm","summary":"MantisBT vulnerable to information disclosure with user profiles\nUsing a crafted POST request, an unprivileged, registered user is able to retrieve information about other users' personal system profiles.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45792","reference_id":"","reference_type":"","scores":[{"value":"0.00663","scoring_system":"epss","scoring_elements":"0.71606","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-45792"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/56bbd02dc1fb33a8de5898fd17dc3d698c847f55","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/56bbd02dc1fb33a8de5898fd17dc3d698c847f55"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/ef0f820284032350cc20a39ff9cb2010d5463b41","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:31:35Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/ef0f820284032350cc20a39ff9cb2010d5463b41"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=34640","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:31:35Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=34640"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45792","reference_id":"CVE-2024-45792","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-45792"},{"reference_url":"https://github.com/advisories/GHSA-h5q3-fjp4-2x7r","reference_id":"GHSA-h5q3-fjp4-2x7r","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-h5q3-fjp4-2x7r"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-h5q3-fjp4-2x7r","reference_id":"GHSA-h5q3-fjp4-2x7r","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-30T15:31:35Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-h5q3-fjp4-2x7r"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/82810?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.26.4","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.26.4"}],"aliases":["CVE-2024-45792","GHSA-h5q3-fjp4-2x7r"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8676-5hmd-s3hm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111741?format=json","vulnerability_id":"VCID-8cnw-f9a5-aygc","summary":"MantisBT XSS when uploading an attachment\nThe proj_doc_edit_page.php Project Documentation feature in MantisBT before 2.21.3 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed when editing the document's page.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15539","reference_id":"","reference_type":"","scores":[{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.67249","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.6729","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15539"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/bd094dede74ff6e313e286e949e2387233a96eea","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/bd094dede74ff6e313e286e949e2387233a96eea"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=26078","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=26078"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15539","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15539"},{"reference_url":"https://github.com/advisories/GHSA-p495-jrpq-p66g","reference_id":"GHSA-p495-jrpq-p66g","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-p495-jrpq-p66g"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/153825?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.21.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.21.3"}],"aliases":["CVE-2019-15539","GHSA-p495-jrpq-p66g"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8cnw-f9a5-aygc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111355?format=json","vulnerability_id":"VCID-8hsn-cvrk-1uh5","summary":"MantisBT Incorrect Authorization for bug_revision_view_page.php check\nAn issue was discovered in MantisBT before 2.24.4. An incorrect access check in bug_revision_view_page.php allows an unprivileged attacker to view the Summary field of private issues, as well as bugnotes revisions, gaining access to potentially confidential information via the bugnote_id parameter.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35849","reference_id":"","reference_type":"","scores":[{"value":"0.00762","scoring_system":"epss","scoring_elements":"0.73738","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00762","scoring_system":"epss","scoring_elements":"0.73775","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35849"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/e9fd168c519a46c2cd0f3cb835e9ce5dba77fc4d","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/e9fd168c519a46c2cd0f3cb835e9ce5dba77fc4d"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27370","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27370"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35849","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35849"},{"reference_url":"https://github.com/advisories/GHSA-7j8m-fm49-xgmg","reference_id":"GHSA-7j8m-fm49-xgmg","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-7j8m-fm49-xgmg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/152011?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.4"}],"aliases":["CVE-2020-35849","GHSA-7j8m-fm49-xgmg"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8hsn-cvrk-1uh5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/47044?format=json","vulnerability_id":"VCID-ed8g-bc8k-dkgq","summary":"Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')\nMantisBT is an open source issue tracker. Prior to version 2.26.1, an unauthenticated attacker who knows a user's email address and username can hijack the user's account by poisoning the link in the password reset notification message. A patch is available in version 2.26.1. As a workaround, define `$g_path` as appropriate in `config_inc.php`.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-23830","reference_id":"","reference_type":"","scores":[{"value":"0.01732","scoring_system":"epss","scoring_elements":"0.82832","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-23830"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/7055731d09ff12b2781410a372f790172e279744","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T16:05:28Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/7055731d09ff12b2781410a372f790172e279744"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=19381","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T16:05:28Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=19381"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23830","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-23830"},{"reference_url":"https://github.com/advisories/GHSA-mcqj-7p29-9528","reference_id":"GHSA-mcqj-7p29-9528","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mcqj-7p29-9528"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-mcqj-7p29-9528","reference_id":"GHSA-mcqj-7p29-9528","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-21T16:05:28Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-mcqj-7p29-9528"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/69016?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.26.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-mubw-sf3f-n3fg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.26.1"}],"aliases":["CVE-2024-23830","GHSA-mcqj-7p29-9528"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ed8g-bc8k-dkgq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111781?format=json","vulnerability_id":"VCID-fwyx-hjd4-b7hh","summary":"MantisBT Incorrect Authorization in bug_actiongroup_page.php\nAn issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29605","reference_id":"","reference_type":"","scores":[{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.3477","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34866","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29605"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/9322c8c9f57fb72f3b8b033889a6a09c441d5be0","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/9322c8c9f57fb72f3b8b033889a6a09c441d5be0"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27357","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27357"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27727","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27727"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29605","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29605"},{"reference_url":"https://github.com/advisories/GHSA-pgg9-mmcg-8mxp","reference_id":"GHSA-pgg9-mmcg-8mxp","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pgg9-mmcg-8mxp"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/152011?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.4"}],"aliases":["CVE-2020-29605","GHSA-pgg9-mmcg-8mxp"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fwyx-hjd4-b7hh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43277?format=json","vulnerability_id":"VCID-hxaw-gp24-9kfv","summary":"MantisBT vulnerable to XSS via unescaped output in browser_search_plugin.php\nAn XSS issue was discovered in browser_search_plugin.php in MantisBT up to and including 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28508","reference_id":"","reference_type":"","scores":[{"value":"0.07116","scoring_system":"epss","scoring_elements":"0.91687","published_at":"2026-06-04T12:55:00Z"},{"value":"0.22039","scoring_system":"epss","scoring_elements":"0.95892","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28508"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/YavuzSahbaz/CVE-2022-28508/blob/main/MantisBT%202.25.2%20XSS%20vulnurability","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/YavuzSahbaz/CVE-2022-28508/blob/main/MantisBT%202.25.2%20XSS%20vulnurability"},{"reference_url":"https://mantisbt.org","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org"},{"reference_url":"https://sourceforge.net/projects/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://sourceforge.net/projects/mantisbt"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28508","reference_id":"CVE-2022-28508","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28508"},{"reference_url":"https://github.com/advisories/GHSA-wfg2-2wmw-6894","reference_id":"GHSA-wfg2-2wmw-6894","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wfg2-2wmw-6894"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61382?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.3"}],"aliases":["CVE-2022-28508","GHSA-wfg2-2wmw-6894"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hxaw-gp24-9kfv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43848?format=json","vulnerability_id":"VCID-hz9e-tmbf-uydt","summary":"MantisBT allows XSS via the Manage Filter page\nA cross-site scripting (XSS) vulnerability in the Manage Filters page (manage_filter_page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17782","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39023","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.38935","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-17782"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/72ab020a42a35fd341e983a25849f8277bb34044","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/72ab020a42a35fd341e983a25849f8277bb34044"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/613","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/613"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=24813","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=24813"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-17782","reference_id":"CVE-2018-17782","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-17782"},{"reference_url":"https://github.com/advisories/GHSA-ggjm-7m5f-7xjv","reference_id":"GHSA-ggjm-7m5f-7xjv","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-ggjm-7m5f-7xjv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/62992?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.17.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-m956-44xf-2qfz"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.17.2"}],"aliases":["CVE-2018-17782","GHSA-ggjm-7m5f-7xjv"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hz9e-tmbf-uydt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/54776?format=json","vulnerability_id":"VCID-jpyg-rbg3-rybh","summary":"MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor\nIf an issue references a note that belongs to another issue that the user doesn't have access to, then it gets hyperlinked. Clicking on the link gives an access denied error as expected, yet some information remains available via the link, link label, and tooltip.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34080","reference_id":"","reference_type":"","scores":[{"value":"0.00288","scoring_system":"epss","scoring_elements":"0.52533","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34080"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/0a50562369d823689c9b946066d1e49d3c2df226","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:31:57Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/0a50562369d823689c9b946066d1e49d3c2df226"},{"reference_url":"https://github.com/mantisbt/mantisbt/pull/2000","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:31:57Z/"}],"url":"https://github.com/mantisbt/mantisbt/pull/2000"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=34434","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:31:57Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=34434"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34080","reference_id":"CVE-2024-34080","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34080"},{"reference_url":"https://github.com/advisories/GHSA-99jc-wqmr-ff2q","reference_id":"GHSA-99jc-wqmr-ff2q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-99jc-wqmr-ff2q"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-99jc-wqmr-ff2q","reference_id":"GHSA-99jc-wqmr-ff2q","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-13T18:31:57Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-99jc-wqmr-ff2q"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/81243?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.26.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8676-5hmd-s3hm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.26.2"}],"aliases":["CVE-2024-34080","GHSA-99jc-wqmr-ff2q"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jpyg-rbg3-rybh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/112383?format=json","vulnerability_id":"VCID-jqsn-z754-57ek","summary":"MantisBT unauthorized users able to access private files\nAn issue was discovered in file_download.php in MantisBT before 2.24.3. Users without access to view private issue notes are able to download the (supposedly private) attachments linked to these notes by accessing the corresponding file download URL directly.","references":[{"reference_url":"http://github.com/mantisbt/mantisbt/commit/5595c90f11c48164331a20bb9c66098980516e93","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://github.com/mantisbt/mantisbt/commit/5595c90f11c48164331a20bb9c66098980516e93"},{"reference_url":"http://github.com/mantisbt/mantisbt/commit/9de20c09e5a557e57159a61657ce62f1a4f578fe","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://github.com/mantisbt/mantisbt/commit/9de20c09e5a557e57159a61657ce62f1a4f578fe"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25781","reference_id":"","reference_type":"","scores":[{"value":"0.00258","scoring_system":"epss","scoring_elements":"0.49442","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00258","scoring_system":"epss","scoring_elements":"0.49381","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25781"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27039","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27039"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25781","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-25781"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150408?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.3"}],"aliases":["CVE-2020-25781","GHSA-xjmx-cprh-646r"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jqsn-z754-57ek"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/46222?format=json","vulnerability_id":"VCID-jtj9-ccw1-8kd1","summary":"MantisBT may disclose project names to unauthorized users\nDue to insufficient access-level checks on the Wiki redirection page, any user can reveal private Projects' names, by accessing wiki.php with sequentially incremented IDs.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-44394","reference_id":"","reference_type":"","scores":[{"value":"0.00491","scoring_system":"epss","scoring_elements":"0.65991","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-44394"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/65c44883f9d24f3ccef066fb523c93d8fdd7afc1","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T18:58:41Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/65c44883f9d24f3ccef066fb523c93d8fdd7afc1"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=32981","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T18:58:41Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=32981"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44394","reference_id":"CVE-2023-44394","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-44394"},{"reference_url":"https://github.com/advisories/GHSA-v642-mh27-8j6m","reference_id":"GHSA-v642-mh27-8j6m","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-v642-mh27-8j6m"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-v642-mh27-8j6m","reference_id":"GHSA-v642-mh27-8j6m","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-13T18:58:41Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-v642-mh27-8j6m"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/67377?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.8","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-mubw-sf3f-n3fg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.8"}],"aliases":["CVE-2023-44394","GHSA-v642-mh27-8j6m"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jtj9-ccw1-8kd1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42958?format=json","vulnerability_id":"VCID-kh1w-q4tc-6yhd","summary":"MantisBT Insufficient Session Expiration cookie string not reset after logout\nAn issue was discovered in MantisBT before 2.24.5. It associates a unique cookie string with each user. This string is not reset upon logout (i.e., the user session is still considered valid and active), allowing an attacker who somehow gained access to a user's cookie to login as them.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-20001","reference_id":"","reference_type":"","scores":[{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34153","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00142","scoring_system":"epss","scoring_elements":"0.34053","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-20001"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/79a78c09d5ef5ce098adc73f6f1416f00fc238a5","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/79a78c09d5ef5ce098adc73f6f1416f00fc238a5"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=11296","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=11296"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27976","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27976"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2009-20001","reference_id":"CVE-2009-20001","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-20001"},{"reference_url":"https://github.com/advisories/GHSA-jm72-67rm-763j","reference_id":"GHSA-jm72-67rm-763j","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jm72-67rm-763j"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61471?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.5"}],"aliases":["CVE-2009-20001","GHSA-jm72-67rm-763j"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kh1w-q4tc-6yhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/112173?format=json","vulnerability_id":"VCID-m956-44xf-2qfz","summary":"MantisBT allows cross-site scripting (XSS) via crafted filename\nThe Timeline feature in my_view_page.php in MantisBT through 2.21.1 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed for any user having visibility to the issue, whenever My View Page is displayed.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15074","reference_id":"","reference_type":"","scores":[{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73398","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00745","scoring_system":"epss","scoring_elements":"0.73434","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2019-15074"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/9cee1971c498bbe0a72bca1c773fae50171d8c27","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/9cee1971c498bbe0a72bca1c773fae50171d8c27"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=25995","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=25995"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15074","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-15074"},{"reference_url":"https://github.com/advisories/GHSA-gg4j-279j-22ph","reference_id":"GHSA-gg4j-279j-22ph","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-gg4j-279j-22ph"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/155160?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.21.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.21.2"}],"aliases":["CVE-2019-15074","GHSA-gg4j-279j-22ph"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m956-44xf-2qfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/54779?format=json","vulnerability_id":"VCID-mubw-sf3f-n3fg","summary":"Mantis Bug Tracker (MantisBT) vulnerable to cross-site scripting\nImproper escaping of a custom field's name allows an attacker to inject HTML and, if CSP settings permit, achieve execution of arbitrary JavaScript when:\n- resolving or closing issues (bug_change_status_page.php) belonging to a project linking said custom field\n- viewing issues (view_all_bug_page.php) when the custom field is displayed as a column\n- printing issues (print_all_bug_page.php) when the custom field is displayed as a column","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34081","reference_id":"","reference_type":"","scores":[{"value":"0.003","scoring_system":"epss","scoring_elements":"0.53692","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-34081"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/447a521aae0f82f791b8116a14a20e276df739be","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-12T19:02:37Z/"}],"url":"https://github.com/mantisbt/mantisbt/commit/447a521aae0f82f791b8116a14a20e276df739be"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=34432","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-12T19:02:37Z/"}],"url":"https://mantisbt.org/bugs/view.php?id=34432"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34081","reference_id":"CVE-2024-34081","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34081"},{"reference_url":"https://github.com/advisories/GHSA-wgx7-jp56-65mq","reference_id":"GHSA-wgx7-jp56-65mq","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-wgx7-jp56-65mq"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-wgx7-jp56-65mq","reference_id":"GHSA-wgx7-jp56-65mq","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-12T19:02:37Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-wgx7-jp56-65mq"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/81243?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.26.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-8676-5hmd-s3hm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.26.2"}],"aliases":["CVE-2024-34081","GHSA-wgx7-jp56-65mq"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mubw-sf3f-n3fg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111792?format=json","vulnerability_id":"VCID-qazy-c4se-fyfb","summary":"MantisBT Insecure Storage in manage_proj_edit_page.php\nIn manage_proj_edit_page.php in MantisBT before 2.24.4, any unprivileged logged-in user can retrieve Private Projects' names via the manage_proj_edit_page.php project_id parameter, without having access to them.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29603","reference_id":"","reference_type":"","scores":[{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41482","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00197","scoring_system":"epss","scoring_elements":"0.41557","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-29603"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/cff10f266f67e2da3060ea4d0b9ecbb29c21b869","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/cff10f266f67e2da3060ea4d0b9ecbb29c21b869"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27357","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27357"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27726","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27726"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29603","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-29603"},{"reference_url":"https://github.com/advisories/GHSA-qpj5-f88q-x7px","reference_id":"GHSA-qpj5-f88q-x7px","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qpj5-f88q-x7px"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/152011?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.4"}],"aliases":["CVE-2020-29603","GHSA-qpj5-f88q-x7px"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qazy-c4se-fyfb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111619?format=json","vulnerability_id":"VCID-smvy-4xzy-4fbq","summary":"MantisBT XSS issue on the view_all_bug_page.php\nAn XSS issue was discovered in MantisBT before 2.24.2. Improper escaping on view_all_bug_page.php allows a remote attacker to inject arbitrary HTML into the page by saving it into a text Custom Field, leading to possible code execution in the browser of any user subsequently viewing the issue (if CSP settings allow it).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-16266","reference_id":"","reference_type":"","scores":[{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.50963","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00274","scoring_system":"epss","scoring_elements":"0.51025","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-16266"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/9ef8f23a8119221d010251112b1255630a46d903","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/9ef8f23a8119221d010251112b1255630a46d903"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/665","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/665"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27056","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27056"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-16266","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-16266"},{"reference_url":"https://github.com/advisories/GHSA-4rrc-5vp6-m3f6","reference_id":"GHSA-4rrc-5vp6-m3f6","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-4rrc-5vp6-m3f6"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/153171?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-ubun-zdjr-7uem"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.2"}],"aliases":["CVE-2020-16266","GHSA-4rrc-5vp6-m3f6"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-smvy-4xzy-4fbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/110953?format=json","vulnerability_id":"VCID-stgp-f24d-qqdp","summary":"MantisBT XSS in manage_custom_field_update.php\nAn issue was discovered in MantisBT through 2.24.3. In the helper_ensure_confirmed call in manage_custom_field_update.php, the custom field name is not sanitized. This may be problematic depending on CSP settings.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35571","reference_id":"","reference_type":"","scores":[{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52244","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52304","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-35571"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/100c3d58c3f6f12b7a6cf97fba473ede521f20db","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/100c3d58c3f6f12b7a6cf97fba473ede521f20db"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=27768","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=27768"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35571","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-35571"},{"reference_url":"https://github.com/advisories/GHSA-cvrm-cr3m-qj92","reference_id":"GHSA-cvrm-cr3m-qj92","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cvrm-cr3m-qj92"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/150413?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.0"}],"aliases":["CVE-2020-35571","GHSA-cvrm-cr3m-qj92"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-stgp-f24d-qqdp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/110568?format=json","vulnerability_id":"VCID-uk44-j13d-43ce","summary":"MantisBT XSS through crafted SVG documents in file_download.php\nAn XSS vulnerability in MantisBT before 2.25.5 allows remote attackers to attach crafted SVG documents to issue reports or bugnotes. When a user or an admin clicks on the attachment, file_download.php opens the SVG document in a browser tab instead of downloading it as a file, causing the JavaScript code to execute.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-33910","reference_id":"","reference_type":"","scores":[{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48673","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00251","scoring_system":"epss","scoring_elements":"0.48734","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-33910"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/266762193fc6c09ffc6b14f5a34c86eae3ebee20","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/266762193fc6c09ffc6b14f5a34c86eae3ebee20"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/719","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/719"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=29135","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=29135"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=30384","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=30384"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-33910","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-33910"},{"reference_url":"https://github.com/advisories/GHSA-qghg-v7xv-q98q","reference_id":"GHSA-qghg-v7xv-q98q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-qghg-v7xv-q98q"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/64053?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.5"}],"aliases":["CVE-2022-33910","GHSA-qghg-v7xv-q98q"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uk44-j13d-43ce"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42922?format=json","vulnerability_id":"VCID-uyk7-6syy-m7c3","summary":"MantisBT CSV Injection unprivileged user access in csv_export.php\nLack of Neutralization of Formula Elements in the CSV API of MantisBT before 2.25.3 allows an unprivileged attacker to execute code or gain access to information when a user opens the csv_export.php generated CSV file in Excel.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43257","reference_id":"","reference_type":"","scores":[{"value":"0.00724","scoring_system":"epss","scoring_elements":"0.72964","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00724","scoring_system":"epss","scoring_elements":"0.72927","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-43257"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/7f4534c723e3162b8784aebda4836324041dbc3e","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/7f4534c723e3162b8784aebda4836324041dbc3e"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/99eb8d41cbacc703f88807898dcc9ac55eec0f15","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/99eb8d41cbacc703f88807898dcc9ac55eec0f15"},{"reference_url":"https://www.mantisbt.org/bugs/view.php?id=29130","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://www.mantisbt.org/bugs/view.php?id=29130"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43257","reference_id":"CVE-2021-43257","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-43257"},{"reference_url":"https://github.com/advisories/GHSA-rg8f-5p7x-m6wv","reference_id":"GHSA-rg8f-5p7x-m6wv","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rg8f-5p7x-m6wv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61382?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.3"}],"aliases":["CVE-2021-43257","GHSA-rg8f-5p7x-m6wv"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uyk7-6syy-m7c3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42919?format=json","vulnerability_id":"VCID-uzm1-jgsr-ufeg","summary":"MantisBT vulnerable to XSS due to improper escape in manage_plugin_page.php and manage_plugin_uninstall.php\nAn XSS issue was discovered in MantisBT before 2.25.3. Improper escaping of a Plugin name allows execution of arbitrary code (if CSP allows it) in manage_plugin_page.php and manage_plugin_uninstall.php when a crafted plugin is installed.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26144","reference_id":"","reference_type":"","scores":[{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.67249","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00522","scoring_system":"epss","scoring_elements":"0.6729","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-26144"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/a7751c3e318011ca1314bc1cfea200d53e0dfff6","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/a7751c3e318011ca1314bc1cfea200d53e0dfff6"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=29688","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=29688"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-26144","reference_id":"CVE-2022-26144","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-26144"},{"reference_url":"https://github.com/advisories/GHSA-rqgj-rqfr-5j6f","reference_id":"GHSA-rqgj-rqfr-5j6f","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rqgj-rqfr-5j6f"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61382?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.3"}],"aliases":["CVE-2022-26144","GHSA-rqgj-rqfr-5j6f"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uzm1-jgsr-ufeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111624?format=json","vulnerability_id":"VCID-w3u1-um27-1uay","summary":"MantisBT SQL Injection via mc_project_get_users function\nIn MantisBT 2.24.3, SQL Injection can occur in the parameter \"access\" of the mc_project_get_users function through the API SOAP.","references":[{"reference_url":"http://packetstormsecurity.com/files/160750/Mantis-Bug-Tracker-2.24.3-SQL-Injection.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/160750/Mantis-Bug-Tracker-2.24.3-SQL-Injection.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28413","reference_id":"","reference_type":"","scores":[{"value":"0.01737","scoring_system":"epss","scoring_elements":"0.82856","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01737","scoring_system":"epss","scoring_elements":"0.82829","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-28413"},{"reference_url":"https://ethicalhcop.medium.com/cve-2020-28413-blind-sql-injection-en-mantis-bug-tracker-2-24-3-api-soap-54238f8e046d","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://ethicalhcop.medium.com/cve-2020-28413-blind-sql-injection-en-mantis-bug-tracker-2-24-3-api-soap-54238f8e046d"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/3e37b4041bf76422541836a424ca71bc4a660247","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/3e37b4041bf76422541836a424ca71bc4a660247"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-28413","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2020-28413"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49340.py","reference_id":"CVE-2020-28413","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49340.py"},{"reference_url":"https://github.com/advisories/GHSA-49w9-82cj-xr48","reference_id":"GHSA-49w9-82cj-xr48","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-49w9-82cj-xr48"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/152011?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.24.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.24.4"}],"aliases":["CVE-2020-28413","GHSA-49w9-82cj-xr48"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w3u1-um27-1uay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/111224?format=json","vulnerability_id":"VCID-y7ms-qz8n-3ugn","summary":"MantisBT allows XSS in manage_custom_field_edit_page.php\nAn XSS issue was discovered in manage_custom_field_edit_page.php in MantisBT before 2.25.2. Unescaped output of the return parameter allows an attacker to inject code into a hidden input field.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-33557","reference_id":"","reference_type":"","scores":[{"value":"0.0093","scoring_system":"epss","scoring_elements":"0.76475","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0093","scoring_system":"epss","scoring_elements":"0.76504","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-33557"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://github.com/mantisbt/mantisbt/commit/03dd37221e636f8959b8cb9fbad84f38f9582356","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt/commit/03dd37221e636f8959b8cb9fbad84f38f9582356"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/699","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/699"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=28552","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=28552"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-33557","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-33557"},{"reference_url":"https://github.com/advisories/GHSA-52cx-vphc-jmjm","reference_id":"GHSA-52cx-vphc-jmjm","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-52cx-vphc-jmjm"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61979?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.2"}],"aliases":["CVE-2021-33557","GHSA-52cx-vphc-jmjm"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y7ms-qz8n-3ugn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44522?format=json","vulnerability_id":"VCID-ybzq-wt16-3bc2","summary":"MantisBT may expose private issues' summaries to unauthorized users\nMantis Bug Tracker (MantisBT) is an open source issue tracker. In versions prior to 2.25.6, due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can access to the _Summary_ field of private Issues (i.e. having Private view status, or belonging to a private Project) via a crafted `bug_arr[]` parameter in *bug_actiongroup_ext.php*. This issue is fixed in version 2.25.6. There are no workarounds.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-22476","reference_id":"","reference_type":"","scores":[{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42019","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00201","scoring_system":"epss","scoring_elements":"0.42093","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-22476"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=31086","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=31086"},{"reference_url":"https://github.com/advisories/GHSA-hf4x-6h87-hm79","reference_id":"GHSA-hf4x-6h87-hm79","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-hf4x-6h87-hm79"},{"reference_url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-hf4x-6h87-hm79","reference_id":"GHSA-hf4x-6h87-hm79","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:00:04Z/"}],"url":"https://github.com/mantisbt/mantisbt/security/advisories/GHSA-hf4x-6h87-hm79"},{"reference_url":"https://www.mantisbt.org/bugs/view.php?id=31086","reference_id":"view.php?id=31086","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T21:00:04Z/"}],"url":"https://www.mantisbt.org/bugs/view.php?id=31086"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/64054?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.25.6","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-mubw-sf3f-n3fg"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.25.6"}],"aliases":["CVE-2023-22476","GHSA-hf4x-6h87-hm79"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ybzq-wt16-3bc2"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43899?format=json","vulnerability_id":"VCID-dy4y-w8g5-9udt","summary":"MantisBT allows XSS on the Edit Filter page via crafted filter name\nAn issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar\" onclick=\"alert(1)').","references":[{"reference_url":"http://github.com/mantisbt/mantisbt/commit/8b5fa243dbf04344a55fe880135ec149fc1f439f","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://github.com/mantisbt/mantisbt/commit/8b5fa243dbf04344a55fe880135ec149fc1f439f"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14504","reference_id":"","reference_type":"","scores":[{"value":"0.00482","scoring_system":"epss","scoring_elements":"0.65559","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00482","scoring_system":"epss","scoring_elements":"0.65507","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14504"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/602","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/602"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=24608","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=24608"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14504","reference_id":"CVE-2018-14504","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-14504"},{"reference_url":"https://github.com/advisories/GHSA-74gh-5j33-vg4w","reference_id":"GHSA-74gh-5j33-vg4w","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-74gh-5j33-vg4w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/63083?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.15.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-516n-s5ts-eyg8"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-6tnt-m23j-pyhv"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-hz9e-tmbf-uydt"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-m956-44xf-2qfz"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.15.1"}],"aliases":["CVE-2018-14504","GHSA-74gh-5j33-vg4w"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dy4y-w8g5-9udt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/44042?format=json","vulnerability_id":"VCID-x9k5-hczy-u3cd","summary":"MantisBT allows XSS via View Filters page\nA cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) in MantisBT 2.1.0 through 2.15.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO.","references":[{"reference_url":"http://github.com/mantisbt/mantisbt/commit/4efac90ed89a5c009108b641e2e95683791a165a","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://github.com/mantisbt/mantisbt/commit/4efac90ed89a5c009108b641e2e95683791a165a"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-13055","reference_id":"","reference_type":"","scores":[{"value":"0.00349","scoring_system":"epss","scoring_elements":"0.57725","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00349","scoring_system":"epss","scoring_elements":"0.57674","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-13055"},{"reference_url":"https://github.com/mantisbt/mantisbt","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mantisbt/mantisbt"},{"reference_url":"https://mantisbt.org/blog/archives/mantisbt/602","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/blog/archives/mantisbt/602"},{"reference_url":"https://mantisbt.org/bugs/view.php?id=24580","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://mantisbt.org/bugs/view.php?id=24580"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2018-13055","reference_id":"CVE-2018-13055","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2018-13055"},{"reference_url":"https://github.com/advisories/GHSA-mjp7-97w4-jwhc","reference_id":"GHSA-mjp7-97w4-jwhc","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-mjp7-97w4-jwhc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/63083?format=json","purl":"pkg:composer/mantisbt/mantisbt@2.15.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1n7b-6pyz-cka5"},{"vulnerability":"VCID-1nq1-6hwz-7kcq"},{"vulnerability":"VCID-1v33-u5bm-pyem"},{"vulnerability":"VCID-516n-s5ts-eyg8"},{"vulnerability":"VCID-5mtg-nbrw-jyhp"},{"vulnerability":"VCID-6tnt-m23j-pyhv"},{"vulnerability":"VCID-8676-5hmd-s3hm"},{"vulnerability":"VCID-8cnw-f9a5-aygc"},{"vulnerability":"VCID-8hsn-cvrk-1uh5"},{"vulnerability":"VCID-ed8g-bc8k-dkgq"},{"vulnerability":"VCID-fwyx-hjd4-b7hh"},{"vulnerability":"VCID-hxaw-gp24-9kfv"},{"vulnerability":"VCID-hz9e-tmbf-uydt"},{"vulnerability":"VCID-jpyg-rbg3-rybh"},{"vulnerability":"VCID-jqsn-z754-57ek"},{"vulnerability":"VCID-jtj9-ccw1-8kd1"},{"vulnerability":"VCID-kh1w-q4tc-6yhd"},{"vulnerability":"VCID-m956-44xf-2qfz"},{"vulnerability":"VCID-mubw-sf3f-n3fg"},{"vulnerability":"VCID-qazy-c4se-fyfb"},{"vulnerability":"VCID-smvy-4xzy-4fbq"},{"vulnerability":"VCID-stgp-f24d-qqdp"},{"vulnerability":"VCID-uk44-j13d-43ce"},{"vulnerability":"VCID-uyk7-6syy-m7c3"},{"vulnerability":"VCID-uzm1-jgsr-ufeg"},{"vulnerability":"VCID-w3u1-um27-1uay"},{"vulnerability":"VCID-y7ms-qz8n-3ugn"},{"vulnerability":"VCID-ybzq-wt16-3bc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.15.1"}],"aliases":["CVE-2018-13055","GHSA-mjp7-97w4-jwhc"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x9k5-hczy-u3cd"}],"risk_score":"3.1","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/mantisbt/mantisbt@2.15.1"}