Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MantisBT vulnerable to information disclosure with user profiles
Vulnerability Description
Mantis Bug Tracker (MantisBT) is an open source issue tracker. Using a crafted POST request, an unprivileged, registered user is able to retrieve information about other users' personal system profiles. This vulnerability is fixed in 2.26.4.
CVSS Information
N/A
Vulnerability Type
信息暴露
Vulnerability Title
Mantis Bug Tracker 信息泄露漏洞
Vulnerability Description
Mantis Bug Tracker(MantisBT)是Mantis Bug Tracker开源的一个 bug 跟踪器。 Mantis Bug Tracker 2.26.3版本及之前版本存在信息泄露漏洞。攻击者利用该漏洞通过使用特制的POST请求检索其他用户个人系统配置文件的信息。
CVSS Information
N/A
Vulnerability Type
N/A