Количество 3
Количество 3
CVE-2025-62520
Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions 2.27.1 and below, due to insufficient access-level checks, any non-admin user with access to manage_config_columns_page.php can use the Copy From action to retrieve the columns configuration from a private project they have no access to. This issue is fixed in version 2.27.2.
CVE-2025-62520
Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ...
GHSA-g582-8vwr-68h2
MantisBT unauthorized disclosure of private project column configuration
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-62520 Mantis Bug Tracker (MantisBT) is an open source issue tracker. In versions 2.27.1 and below, due to insufficient access-level checks, any non-admin user with access to manage_config_columns_page.php can use the Copy From action to retrieve the columns configuration from a private project they have no access to. This issue is fixed in version 2.27.2. | CVSS3: 4.3 | 0% Низкий | 3 месяца назад |
| CVE-2025-62520 Mantis Bug Tracker (MantisBT) is an open source issue tracker. In vers ... | CVSS3: 4.3 | 0% Низкий | 3 месяца назад |
| GHSA-g582-8vwr-68h2 MantisBT unauthorized disclosure of private project column configuration | CVSS3: 4.3 | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу