2 matches found
CVE-2020-29604
MantisBT before 2.24.4 suffers a missing access check in bug_actiongroup.php, enabling a user with rights to create issues to copy a private issue (via bug_arr[]) and clone it with all bugnotes and attachments, exposing confidential data. Affected: MantisBT
MantisBT < 2.24.4 Multiple Vulnerabilities - Linux
MantisBT is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...