Unboundeduniverse

**Name of the Vulnerable Software and Affected Versions** MantisBT versions prior to 2.26.2 **Description** The issue is related to improper escaping of a custom field's name, allowing an attacker to inject HTML and potentially execute arbitrary JavaScript when certain conditions are met, such as resolving or closing issues, viewing issues when the custom field is displayed as a column, or printing issues when the custom field is displayed as a column. This can occur in specific pages like `bug change status page.php`, `view all bug page.php`, and `print all bug page.php`. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For versions prior to 2.26.2, update to version 2.26.2 or later to resolve the issue. As a temporary workaround, ensure Custom Field Names do not contain HTML tags.