CVE-2004-2666
CVE-2004-2666 affects MantisBT before 20041016, where the web interface exposes the full Bug History/Issue History regardless of view_history_threshold. This permits remote attackers who visit a bug page to access private bug details. The provided sources confirm the vulnerability in MantisBT’s h...