A vulnerability classified as critical was found in MantisBT up to 2.26.0. Affected by this vulnerability is an unknown functionality of the file config_inc.php of the component Notification Message Handler. The manipulation leads to injection.

This vulnerability is known as CVE-2024-23830. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.