Damien Regad

**Name of the Vulnerable Software and Affected Versions** MantisBT versions 1.2.13 through 1.2.17 **Description** A cross-site scripting (XSS) issue exists in the selection list in the filters on the Configuration Report page, specifically in the adm config report.php file. This allows remote administrators to inject arbitrary web script or HTML via a crafted config option. **Recommendations** For MantisBT versions 1.2.13 through 1.2.17, update to a version that contains a fix for this issue to prevent remote administrators from injecting arbitrary web script or HTML.

**Name of the Vulnerable Software and Affected Versions** MantisBT versions 1.2.17 and earlier **Description** The issue allows remote attackers to bypass authentication. This is achieved by using a password starting with a null byte, which triggers an unauthenticated bind. **Recommendations** For MantisBT versions 1.2.17 and earlier, update to a version later than 1.2.17 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** MantisBT versions 1.2.13 through 1.2.16 **Description** The issue allows remote authenticated administrators to execute arbitrary SQL commands. This is achieved via the `filter config id` parameter in the manage configuration page, specifically in the adm config report.php file. **Recommendations** For versions 1.2.13 through 1.2.16, update to a version that contains a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to the adm config report.php page and avoid using the `filter config id` parameter until the issue is resolved.