3 matches found
CVE-2020-36192
An issue was discovered in the Source Integration plugin before 2.4.1 for MantisBT. An attacker can gain access to the Summary field of private Issues either marked as Private, or part of a private Project, if they are attached to an existing Changeset. The information is visible on the view.php...
CVE-2020-36192
An issue was discovered in the Source Integration plugin before 2.4.1 for MantisBT. An attacker can gain access to the Summary field of private Issues either marked as Private, or part of a private Project, if they are attached to an existing Changeset. The information is visible on the view.php...
CVE-2020-36192
The CVE-2020-36192 entry concerns the Source Integration plugin for MantisBT prior to version 2.4.1. The underlying issue allows an attacker to access the Summary field of private issues (private or in private projects) when they are tied to an existing Changeset. The leakage is observable on vie...