Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.5 views

MantisBT < 2.27.2 Unauthorized Disclosure (GHSA-g582-8vwr-68h2)

The version of MantisBT installed on the remote host is prior to 2.27.2. It is, therefore, affected by a vulnerability as referenced in the GHSA-g582-8vwr-68h2 advisory. - Due to insufficient access-level checks, any non-admin user having access to manageconfigcolumnspage typically project manage...

5.3CVSS5.9AI score0.0022EPSS
Exploits1References2
NVD
NVD
added 2025/11/04 10:16 p.m.7 views

CVE-2025-62520

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.27.1 and below, due to insufficient access-level checks, any non-admin user with access to manageconfigcolumnspage.php can use the Copy From action to retrieve the columns configuration from a private project they have no...

5.3CVSS0.0022EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/11/04 9:31 p.m.4 views

CVE-2025-62520 MantisBT unauthorized disclosure of private project column configuration

Mantis Bug Tracker MantisBT is an open source issue tracker. In versions 2.27.1 and below, due to insufficient access-level checks, any non-admin user with access to manageconfigcolumnspage.php can use the Copy From action to retrieve the columns configuration from a private project they have no...

5.3CVSS6.3AI score0.0022EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/03 12:0 a.m.4 views

PT-2025-44805

Name of the Vulnerable Software and Affected Versions MantisBT versions 2.27.1 and below Description Mantis Bug Tracker MantisBT is an open source issue tracker. Insufficient access-level checks allow a non-admin user with access to the manage config columns page.php page to retrieve the columns...

5.3CVSS6.7AI score0.0022EPSS
Exploits1References8
Rows per page
Query Builder