CVE-2020-29605

EPSS 0.15%

MantisBT Incorrect Authorization in bug_actiongroup_page.php

Published: 5/24/2022Modified: 5/30/2025

Description

An issue was discovered in MantisBT before 2.24.4. Due to insufficient access-level checks, any logged-in user allowed to perform Group Actions can get access to the Summary fields of private Issues via bug_arr[]= in a crafted bug_actiongroup_page.php URL. (The target Issues can have Private view status, or belong to a private Project.)

Affected packages (1)

Packagist/mantisbt/mantisbtfrom 0, < 2.24.4

References (5)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-29605
PATCHhttps://github.com/mantisbt/mantisbt
WEBhttps://github.com/mantisbt/mantisbt/commit/9322c8c9f57fb72f3b8b033889a6a09c441d5be0
WEBhttps://mantisbt.org/bugs/view.php?id=27357
WEBhttps://mantisbt.org/bugs/view.php?id=27727