Vaibhs

**Name of the Vulnerable Software and Affected Versions** MantisBT versions prior to 2.24.5 **Description** An issue was discovered where a unique cookie string associated with each user is not reset upon logout, allowing an attacker with access to a user's cookie to login as them. **Recommendations** For versions prior to 2.24.5, update to version 2.24.5 or later to resolve the issue. As a temporary workaround, consider clearing the cookie string after logout to prevent unauthorized access.