Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

mantisBT — Vulnerabilities & Security Advisories 18

All 18 CVE vulnerabilities found in mantisBT, with AI-generated Chinese analysis, references, and POCs.

Vendor: mantisBT

CVE IDTitleCVSSSeverityPublished
CVE-2026-33548 MantisBT has Stored HTML Injection / XSS when displaying Tags in Timeline CWE-79 5.4 -2026-03-23
CVE-2026-33517 MantisBT Vulnerable to Stored HTML Injection in Tag Delete Confirmation CWE-79 5.4 -2026-03-23
CVE-2026-30849 MantisBT SOAP API has an authentication bypass vulnerability on MySQL CWE-305 9.8 -2026-03-23
CVE-2025-62520 MantisBT unauthorized disclosure of private project column configuration CWE-285 4.3AIMediumAI2025-11-04
CVE-2025-55155 MantisBT: Authentication bypass for some passwords due to PHP type juggling CWE-201 5.4 Medium2025-11-04
CVE-2025-47776 MantisBT: Authentication bypass for some passwords due to PHP type juggling CWE-305 9.8AICriticalAI2025-11-04
CVE-2025-46556 MantisBT is Vulnerable to Denial-of-Service (DoS) attack via Excessive Note Length CWE-770 6.5 Medium2025-11-04
CVE-2024-45792 MantisBT vulnerable to information disclosure with user profiles CWE-200 6.5 -2024-09-30
CVE-2024-34081 MantisBT Cross-site Scripting vulnerability CWE-79 6.6 Medium2024-05-13
CVE-2024-34080 MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor CWE-200 5.3 Medium2024-05-13
CVE-2024-34077 MantisBT user account takeover in the signup/reset password process CWE-305 7.3 High2024-05-13
CVE-2024-23830 MantisBT Host Header Injection vulnerability CWE-74 8.3 High2024-02-20
CVE-2023-44394 Disclosure of project names to unauthorized users in MantisBT CWE-200 4.3 Medium2023-10-16
CVE-2023-22476 MantisBT: Exposure of Private issues' summary to unauthorized users CWE-200 4.3 Medium2023-02-23
CVE-2013-1934 MantisBT 跨站脚本漏洞 5.4 -2019-10-31
CVE-2013-1932 MantisBT 跨站脚本漏洞 5.4 -2019-10-31
CVE-2013-1931 MantisBT 跨站脚本漏洞 4.8 -2019-10-31
CVE-2013-1930 MantisBT 输入验证错误漏洞 4.3 -2019-10-31

All 18 known CVE vulnerabilities affecting mantisBT with full Chinese analysis, references, and POCs where available.