CVE-2020-29605

MEDIUM

MantisBT < 2.24.4 - Authenticated Private Issue Summary Exposure via bug_actiongroup_page.php

Title source: llm

Description

An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)

References (2)

Core 2

Core References

Exploit, Patch, Vendor Advisory x_refsource_misc

https://mantisbt.org/bugs/view.php?id=27357

Exploit, Patch, Vendor Advisory x_refsource_misc

https://mantisbt.org/bugs/view.php?id=27727

Scores

CVSS v3 4.3

EPSS 0.0092

EPSS Percentile 55.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-863

Status published

Products (2)

mantisbt/mantisbt < 2.24.4

mantisbt/mantisbt 0 - 2.24.4Packagist

Published Jan 29, 2021

Tracked Since Feb 18, 2026