Browse Security Advisories
Moderate Security Advisories for https://github.com/mantisbt/mantisbt from github Clear Filters
Moderate
8 months ago
MantisBT unauthorized disclosure of private project column configuration
packagist
mantisbt/mantisbt
Moderate
8 months ago
MantisBT lacks verification when changing a user's email address
packagist
mantisbt/mantisbt
Moderate
8 months ago
MantisBT Vulnerable to Denial-of-Service (DoS) via Excessive Note Length
packagist
mantisbt/mantisbt
Moderate
over 1 year ago
MantisBT vulnerable to information disclosure with user profiles
packagist
mantisbt/mantisbt
Moderate
about 2 years ago
Mantis Bug Tracker (MantisBT) vulnerable to cross-site scripting
packagist
mantisbt/mantisbt
Moderate
about 2 years ago
MantisBT Vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
packagist
mantisbt/mantisbt
Moderate
over 2 years ago
MantisBT may disclose project names to unauthorized users
packagist
mantisbt/mantisbt
Moderate
over 3 years ago
MantisBT may expose private issues' summaries to unauthorized users
packagist
mantisbt/mantisbt
Moderate
almost 4 years ago
MantisBT XSS through crafted SVG documents in file_download.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT allows XSS in manage_custom_field_edit_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS in manage_custom_field_update.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT Insecure Storage in manage_proj_edit_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT Missing Authorization access check in bug_actiongroup.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT Incorrect Authorization in bug_actiongroup_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT SQL Injection via mc_project_get_users function
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT unauthorized users able to access private files
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XXS where a Custom Field with a crafted Regular Expression property is used
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS issue on the view_all_bug_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT allows cross-site scripting (XSS) via crafted filename
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT cross-site scripting (XSS) vulnerability through crafted PATH_INFO
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS through weak CSP when using Gravatar plugin
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT vulnerable to CSRF and Open Redirect attacks
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS via my_view_page.php and view_user_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT vulnerable to XSS through config_option parameter in adm_config_report.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS via adm_config_report.php's action parameter
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT vulnerable to XSS via unsanitized filter field in manage_user_page.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT allows XSS on the Edit Filter page via crafted filter name
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT allows XSS via the Manage Filter page
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT XSS allows unsanitized input via admin/install.php
packagist
mantisbt/mantisbt
Moderate
about 4 years ago
MantisBT vulnerable to XSS due to improper escape in manage_plugin_page.php and manage_plugin_uninstall.php
packagist
mantisbt/mantisbt
Filter by Severity
Filter by Source
Filter by Ecosystem
maven
3,585
packagist
3,552
pypi
2,581
npm
2,327
go
2,030
nuget
1,762
cargo
556
rubygems
468
hex
24
swift
20
actions
16
pub
2
Filter by Package
moodle/moodle
318
openclaw
275
tensorflow
200
magento/community-edition
192
tensorflow-cpu
192
tensorflow-gpu
184
org.jenkins-ci.main:jenkins-core
152
github.com/mattermost/mattermost/server/v8
126
typo3/cms
115
com.liferay.portal:release.portal.bom
114
github.com/mattermost/mattermost-server
109
org.apache.tomcat:tomcat
99
pimcore/pimcore
91
com.liferay.portal:release.dxp.bom
81
typo3/cms-core
81
Magick.NET-Q16-AnyCPU
77
Magick.NET-Q16-HDRI-AnyCPU
76
Magick.NET-Q16-HDRI-OpenMP-arm64
74
Magick.NET-Q16-HDRI-x86
72
Magick.NET-Q16-HDRI-x64
72
microweber/microweber
72
Magick.NET-Q16-arm64
71
Magick.NET-Q16-HDRI-arm64
71
Magick.NET-Q16-OpenMP-arm64
70
Magick.NET-Q8-AnyCPU
70
Magick.NET-Q16-x86
70
wwbn/avideo
70
Magick.NET-Q16-OpenMP-x64
70
silverstripe/framework
67
Magick.NET-Q16-x64
66
Magick.NET-Q8-OpenMP-arm64
65
Magick.NET-Q8-OpenMP-x64
63
thorsten/phpmyfaq
63
Magick.NET-Q8-arm64
62
Magick.NET-Q8-x86
62
apache-airflow
60
magento/project-community-edition
59
drupal/core
57
phpmyadmin/phpmyadmin
56
Magick.NET-Q8-x64
56
dolibarr/dolibarr
56
github.com/usememos/memos
54
craftcms/cms
54
Magick.NET-Q16-HDRI-OpenMP-x64
54
librenms/librenms
53
concrete5/concrete5
52
apache-superset
47
mantisbt/mantisbt
46
symfony/symfony
45
Django
44
open-webui
44
n8n
44
Magick.NET-Q16-OpenMP-x86
43
actionpack
42
nocodb
40
org.keycloak:keycloak-services
40
picklescan
37
parse-server
37
drupal/drupal
37
org.elasticsearch:elasticsearch
35
showdoc/showdoc
35
github.com/grafana/grafana
34
directus
34
shopware/platform
33
org.keycloak:keycloak-core
32
snipe/snipe-it
32
admidio/admidio
32
hono
30
github.com/mattermost/mattermost-server/v6
30
shopware/core
30
nova
30
plone
29
baserproject/basercms
29
getgrav/grav
28
pypdf
28
intelliants/subrion
28
mautic/core
27
ansible
27
moin
27
rack
26
k8s.io/kubernetes
25
vllm
25
coreutils
25
getkirby/cms
25
aiohttp
24
Plone
23
next
23
phpmyfaq/phpmyfaq
22
grumpydictator/firefly-iii
22
froxlor/froxlor
22
github.com/cilium/cilium
22
github.com/hashicorp/vault
22
gradio
21
github.com/traefik/traefik/v2
21
code.gitea.io/gitea
21
wasmtime
21
DotNetNuke.Core
21
nilsteampassnet/teampass
21
code.vikunja.io/api
21
matrix-synapse
21
github.com/answerdev/answer
21
flowise
21
github.com/traefik/traefik/v3
20
django
20
mediawiki/core
20
github.com/openfga/openfga
20
org.apache.struts:struts2-core
19
electron
19
shopware/shopware
19
pyload-ng
18
org.apache.tomcat.embed:tomcat-embed-core
18
github.com/docker/docker
18
gogs.io/gogs
18
contao/core-bundle
18
remdex/livehelperchat
18
org.opencms:opencms-core
17
dompurify
17
salt
17
github.com/fleetdm/fleet/v4
17
prestashop/prestashop
17
github.com/hashicorp/consul
17
zendframework/zendframework1
16
github.com/argoproj/argo-cd/v2
16
rdiffweb
16
statamic/cms
16
github.com/hashicorp/nomad
16
typo3/cms-backend
16
io.undertow:undertow-core
16
org.xwiki.platform:xwiki-platform-oldcore
15
github.com/siyuan-note/siyuan/kernel
15
com.liferay.portal:com.liferay.portal.impl
15
org.apache.jspwiki:jspwiki-main
15
glance
15
yetiforce/yetiforce-crm
15
org.springframework.security:spring-security-core
15
vyper
15
nokogiri
15
axios
14
puppet
14
feehi/feehicms
14
tinymce
14
activesupport
14
deno
14
weblate
14
github.com/goharbor/harbor
14
wagtail
14
feehi/cms
14
sylius/sylius
13
helm.sh/helm/v3
13
ghost
13
forkcms/forkcms
13
vite
13
transformers
13
github.com/ethereum/go-ethereum
13
svelte
13
com.jfinal:jfinal
13
tribalsystems/zenario
13
Umbraco.Cms
13
com.thoughtworks.xstream:xstream
13
keystone
13
github.com/containerd/containerd
12
wallabag/wallabag
12
github.com/traefik/traefik
12
lavalite/cms
12
simplesamlphp/simplesamlphp
12
@openzeppelin/contracts-upgradeable
12
laravel/framework
12
facturascripts/facturascripts
12
roundup
12
@openzeppelin/contracts
12
github.com/filebrowser/filebrowser/v2
12
ec-cube/ec-cube
12
github.com/rancher/rancher
12
phpoffice/phpspreadsheet
12
org.bouncycastle:bcprov-jdk14
12
ckeditor4
11
github.com/argoproj/argo-cd
11
kubevirt.io/kubevirt
11
org.keycloak:keycloak-parent
11
genix/cms
11
renovate
11
TinyMCE
11
nicegui
11
io.netty:netty-codec-http
11
ci4-cms-erp/ci4ms
11
astro
11
ckan
11
OctoPrint
11
org.eclipse.jetty:jetty-server
11
mlflow
11
craftcms/commerce
11
surrealdb
11
github.com/zitadel/zitadel
11
tinymce/tinymce
11
github.com/openbao/openbao
10
openmage/magento-lts
10
cakephp/cakephp
10
WWBN/AVideo
10
fat_free_crm
10
org.apache.nifi:nifi
10
Filter by Repository
https://github.com/tensorflow/tensorflow
200
https://github.com/moodle/moodle
192
https://github.com/liferay/liferay-portal
143
https://github.com/jenkinsci/jenkins
109
https://github.com/pimcore/pimcore
85
https://github.com/microweber/microweber
63
https://github.com/TYPO3/typo3
63
https://github.com/apache/tomcat
59
https://github.com/usememos/memos
50
https://github.com/django/django
50
https://github.com/silverstripe/silverstripe-framework
50
https://github.com/xwiki/xwiki-platform
50
https://github.com/rails/rails
46
https://github.com/keycloak/keycloak
45
https://github.com/thorsten/phpmyfaq
45
https://github.com/apache/airflow
44
https://github.com/librenms/librenms
42
https://github.com/kubernetes/kubernetes
40
https://github.com/mattermost/mattermost
36
https://github.com/mantisbt/mantisbt
35
https://github.com/mmaitre314/picklescan
34
https://github.com/star7th/showdoc
32
https://github.com/concretecms/concretecms
28
https://github.com/grafana/grafana
27
https://github.com/mautic/mautic
27
https://github.com/symfony/symfony
27
https://github.com/craftcms/cms
26
https://github.com/ansible/ansible
26
https://github.com/phpmyadmin/phpmyadmin
26
https://github.com/spring-projects/spring-framework
26
https://github.com/directus/directus
24
https://github.com/argoproj/argo-cd
24
https://github.com/shopware/shopware
24
https://github.com/umbraco/Umbraco-CMS
23
https://github.com/Dolibarr/dolibarr
22
https://github.com/answerdev/answer
21
https://github.com/magento/magento2
20
https://github.com/apache/activemq
20
https://github.com/plone/Products.CMFPlone
20
https://github.com/firefly-iii/firefly-iii
20
https://github.com/snipe/snipe-it
20
https://github.com/cilium/cilium
19
https://github.com/contao/contao
18
https://github.com/livehelperchat/livehelperchat
18
https://github.com/openstack/nova
18
https://github.com/apache/struts
17
https://github.com/shopware/platform
16
https://github.com/ikus060/rdiffweb
16
https://github.com/matrix-org/synapse
16
https://github.com/gradio-app/gradio
16
https://github.com/netty/netty
15
https://github.com/vyperlang/vyper
15
https://github.com/getkirby/kirby
15
https://github.com/apache/cxf
15
https://github.com/CVEProject/cvelist
15
https://github.com/geoserver/geoserver
14
https://github.com/moby/moby
14
https://github.com/baserproject/basercms
14
https://github.com/froxlor/froxlor
14
https://github.com/x-stream/xstream
14
https://github.com/OpenNMS/opennms
14
https://github.com/yetiforcecompany/yetiforcecrm
14
https://github.com/tinymce/tinymce
14
https://github.com/PaddlePaddle/Paddle
14
https://github.com/TYPO3/TYPO3.CMS
14
https://github.com/saltstack/salt
14
https://github.com/containerd/containerd
13
https://github.com/octobercms/october
13
https://github.com/go-gitea/gitea
13
https://github.com/rack/rack
13
https://github.com/goharbor/harbor
13
https://github.com/apache/nifi
13
https://github.com/openfga/openfga
13
https://github.com/bcgit/bc-java
13
https://github.com/nilsteampassnet/TeamPass
13
https://github.com/PrestaShop/PrestaShop
13
https://github.com/strapi/strapi
13
https://github.com/traefik/traefik
12
https://github.com/openstack/keystone
12
https://github.com/huggingface/transformers
12
https://github.com/OpenZeppelin/openzeppelin-contracts
12
https://github.com/TYPO3-CMS/core
12
https://github.com/hashicorp/consul
12
https://github.com/helm/helm
12
https://github.com/vaadin/platform
11
https://github.com/surrealdb/surrealdb
11
https://github.com/electron/electron
11
https://github.com/vitejs/vite
11
https://github.com/laravel/framework
11
https://github.com/ethereum/go-ethereum
11
https://github.com/apache/zeppelin
11
https://github.com/intelliants/subrion
11
https://github.com/github/advisory-database
11
https://github.com/dnnsoftware/Dnn.Platform
11
https://github.com/rancher/rancher
11
https://github.com/ckeditor/ckeditor4
11
https://github.com/forkcms/forkcms
11
https://github.com/liufee/cms
10
https://github.com/simplesamlphp/simplesamlphp
10
https://github.com/aio-libs/aiohttp
10
https://github.com/backstage/backstage
10
https://github.com/wallabag/wallabag
10
https://github.com/vercel/next.js
10
https://github.com/laurent22/joplin
10
https://github.com/greenpau/caddy-security
10
https://github.com/vllm-project/vllm
10
https://github.com/decidim/decidim
10
https://github.com/TryGhost/Ghost
10
https://github.com/bytecodealliance/wasmtime
10
https://github.com/PHPOffice/PhpSpreadsheet
10
https://github.com/jenkinsci/git-plugin
9
https://github.com/pimcore/admin-ui-classic-bundle
9
https://github.com/opencast/opencast
9
https://github.com/publify/publify
9
https://github.com/alkacon/opencms-core
9
https://github.com/jquery/jquery
9
https://github.com/puppetlabs/puppet
9
https://github.com/fatfreecrm/fat_free_crm
9
https://github.com/thorsten/phpMyFAQ
9
https://github.com/dpgaspar/Flask-AppBuilder
9
https://github.com/urllib3/urllib3
9
https://github.com/sparklemotion/nokogiri
9
https://github.com/OctoPrint/OctoPrint
9
https://github.com/dotnet/runtime
9
https://github.com/kubeedge/kubeedge
8
https://github.com/swagger-api/swagger-ui
8
https://github.com/hashicorp/nomad
8
https://github.com/modoboa/modoboa
8
https://github.com/gogs/gogs
8
https://github.com/FlowiseAI/Flowise
8
https://github.com/dolibarr/dolibarr
8
https://github.com/ckan/ckan
8
https://github.com/opensearch-project/security
8
https://github.com/zendframework/zendframework
8
https://github.com/getgrav/grav
8
https://github.com/sulu/sulu
8
https://github.com/parse-community/parse-server
8
https://github.com/pandao/editor.md
8
https://github.com/onionshare/onionshare
8
https://github.com/LavaLite/cms
8
https://github.com/rubygems/rubygems
8
https://github.com/nilsteampassnet/teampass
8
https://github.com/rails/rails-html-sanitizer
8
https://github.com/openstack/glance
8
https://github.com/pyload/pyload
8
https://github.com/apache/superset
8
https://github.com/openbao/openbao
8
https://github.com/eclipse/jetty.project
8
https://github.com/denoland/deno
7
https://github.com/Leantime/leantime
7
https://github.com/opencontainers/runc
7
https://github.com/nocodb/nocodb
7
https://github.com/hashicorp/vault
7
https://github.com/jeecgboot/jeecg-boot
7
https://github.com/containers/podman
7
https://github.com/twbs/bootstrap
7
https://github.com/janeczku/calibre-web
7
https://github.com/igniterealtime/Openfire
7
https://github.com/matrix-org/matrix-rust-sdk
7
https://github.com/python-pillow/Pillow
7
https://github.com/MobSF/Mobile-Security-Framework-MobSF
7
https://github.com/n8n-io/n8n
7
https://github.com/vega/vega
7
https://github.com/Sylius/Sylius
7
https://github.com/croogo/croogo
7
https://github.com/louislam/uptime-kuma
7
https://github.com/zenml-io/zenml
7
https://github.com/jenkinsci/blueocean-plugin
7
https://github.com/OPCFoundation/UA-.NETStandard
7
https://github.com/chakra-core/ChakraCore
7
https://github.com/dragonflyoss/dragonfly
7
https://github.com/treeverse/lakeFS
7
https://github.com/google/fscrypt
7
https://github.com/openstack/horizon
7
https://github.com/modxcms/revolution
7
https://github.com/bagisto/bagisto
7
https://github.com/zitadel/zitadel
7
https://github.com/py-pdf/pypdf
7
https://github.com/undertow-io/undertow
7
https://github.com/StarCitizenTools/mediawiki-skins-Citizen
7
https://github.com/kevinpapst/kimai2
7
https://github.com/jupyter/notebook
7
https://github.com/opencv/opencv
7
https://github.com/scrapy/scrapy
7
https://github.com/vaadin/flow
7
https://github.com/nahsra/antisamy
7
https://github.com/kubevirt/kubevirt
7
https://github.com/matrix-org/matrix-js-sdk
6
https://github.com/jenkinsci/config-file-provider-plugin
6
https://github.com/dompdf/dompdf
6
https://github.com/panva/jose
6
https://github.com/run-llama/llama_index
6
https://github.com/roundup-tracker/roundup
6
https://github.com/psf/requests
6
https://github.com/lxml/lxml
6
https://github.com/giampaolo/pyftpdlib
6
https://github.com/tecnickcom/TCPDF
6
https://github.com/NodeBB/NodeBB
6
https://github.com/sfackler/rust-openssl
6