MantisBT

mantisbt - Change Log

mantisbt - 1.2.8 (Released 2011-09-06) View Issues ]
======================================

Security release.

- 0013191: [security] XSS vulnerability dues to usage of PHP_SELF (grangeway) - closed.
- 0012361: [sub-projects] Can see private bug in MyView / ViewIssues but then 'access denied' when I view it (dhx) - closed.
- 0013140: [authentication] cloning an issue uses incorrect permissions during actual submit operation (dhx) - closed.
- 0013141: [bugtracker] wrong args passed to config_get in filter_db_get_filter (dhx) - closed.
- 0013272: [installation] Hardcoded table name mantis_config_table in install.php (dregad) - closed.
- 0013281: [security] MantisBT Security Vulnerabilities Notification (dhx) - closed.
 - 0013282: [security] bug_actiongroup_ext_page.php does not properly sanitise action parameter before including local files (dhx) - closed.
 - 0013283: [security] bug_actiongroup_ext_page.php remote file inclusion: action parameter (dhx) - closed.
- 0013290: [csv] Allow more control over excel export format (rombert) - closed.

[9 issues]


MantisBT 1.2.17 [^]
Copyright © 2000 - 2014 MantisBT Team
Time: 0.0552 seconds.
memory usage: 3,138 KB
Powered by Mantis Bugtracker