Vulnerabilities

Report: CVE-2026-34754 - MantisBT allows unauthorized users to upload attachments to restricted issues vi

2026-05-20 0 views admin

CVE ID :CVE-2026-34754 Published : May 19, 2026, 11:05 p.m. | 1 hour, 2 minutes ago Description :Mantis Bug Tracker (MantisBT) is an open source issue tracker. Versions 2.28.1 and prior allow an authenticated user to upload attachments to private Issues they are not authorized to access. This issue has been fixed in version 2.28.2. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-34754

Published

May 19, 2026

🏷️ Tags

report34754mantisbtallowsunauthorizedusersuploadattachmentsrestrictedissues

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-34754 - MantisBT allows unauthorized users to upload attachments to restricted issues vi

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-29518 - Rsync < 3.4.3 TOCTOU Race Condition Allows Symlink-Based Arbitrary File Write

Report: CVE-2026-3593 - Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation - Full Analysis

Report: Ultimate Guide: CVE-2026-3592 - Amplification vulnerabilities via self-pointed glue records

Report: Ultimate Guide: CVE-2026-3039 - BIND 9 server memory exhaustion during GSS-API TKEY negotiation

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting