3 matches found
CVE-2024-45792
Mantis Bug Tracker MantisBT is an open source issue tracker. Using a crafted POST request, an unprivileged, registered user is able to retrieve information about other users' personal system profiles. This vulnerability is fixed in 2.26.4...
MantisBT < 2.26.4 Information Disclosure (0034640)
The version of MantisBT installed on the remote host is prior to 2.26.4. It is, therefore, affected by a information disclosure vulnerability as referenced in the 0034640 advisory. - Mantis Bug Tracker MantisBT is an open source issue tracker. Using a crafted POST request, an unprivileged,...
CVE-2024-45792
MantisBT information-disclosure vulnerability (CVE-2024-45792) arises from a crafted POST request that allows an unprivileged, registered user to retrieve other users’ personal system profiles. Affected: Mantis Bug Tracker (MantisBT) versions prior to 2.26.4 (per multiple sources). Impact: exposu...