CVE-2026-34744 | mantisbt Mantis Bug Tracker up to 2.28.1 Attachments information disclosure (GHSA-rmp5-5jj7-gmvf)

Inserito da Angelo Barbosa | Mag 20, 2026 | CVE

A vulnerability was found in mantisbt Mantis Bug Tracker up to 2.28.1. It has been classified as problematic. Affected by this issue is some unknown functionality of the component Attachments Handler. Performing a manipulation results in information disclosure.

This vulnerability is identified as CVE-2026-34744. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2026-34744 | mantisbt Mantis Bug Tracker up to 2.28.1 Attachments information disclosure (GHSA-rmp5-5jj7-gmvf)

Post correlati

CVE-2024-50589 | Hasomed Elefant 1.4.2.1811/24.03.03 FHIR API missing authentication

CVE-2025-33005 | IBM Planning Analytics Local 2.0/2.1 session expiration

CVE-2024-3147 | DedeCMS 5.7 makehtml_map.php cross-site request forgery

CVE-2026-3867 | Moxa EDR-8010/EDR-G9010 up to 3.23 Configuration File improper ownership management