MantisBT allows unauthorized users to upload attachments to restricted issues...

4.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Description

Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions 2.28.1 and prior allow an authenticated user to upload attachments to private Issues they are not authorized to access. This issue has been fixed in version 2.28.2.

Basic Information

ID CVE-2026-34754

Source GitHub_M

Published May 19, 2026 at 23:05

Affected Product

Vendor mantisbt

Product mantisbt

Version < 2.28.2

Affected Versions mantisbt mantisbt < 2.28.2

CWE Classification

CWE-284

References

{
    "lastseen": "",
    "description": "Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions 2.28.1 and prior allow an authenticated user to upload attachments to private Issues they are not authorized to access. This issue has been fixed in version 2.28.2.",
    "published": "2026-05-19T23:05:27.818Z",
    "modified": "2026-05-19T23:05:27.818Z",
    "type": "cve",
    "title": "MantisBT allows unauthorized users to upload attachments to restricted issues via REST API",
    "source": "GitHub_M",
    "references": "https://github.com/mantisbt/mantisbt/security/advisories/GHSA-h4x5-gvx6-3rwc\nhttps://github.com/mantisbt/mantisbt/commit/b262b4d2835b81394d75356dead66e52a6275206\nhttps://mantisbt.org/bugs/view.php?id=36976",
    "id": "CVE-2026-34754",
    "bulletinFamily": "",
    "cwe": [
        "CWE-284"
    ],
    "cvelist": null,
    "sourceData": "mantisbt mantisbt < 2.28.2",
    "sourceHref": "",
    "cvss": {
        "score": 4.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "mantisbt",
    "version": "< 2.28.2",
    "vendor": "mantisbt",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

MantisBT allows unauthorized users to upload attachments to restricted issues via REST API_CVE-2026-34754