Search Changesets

MantisBT: master-2.12 c731e8bf

2018-04-02 01:17

atrol


Details Diff
Correct links for mentions, issues and notes

Links are not correct rendered if Markdown is enabled

Fixes 0024201
Affected Issues
0024201
mod - plugins/MantisCoreFormatting/MantisCoreFormatting.php Diff File

MantisBT: master 7c7c2ac7

2014-10-30 14:53

Paul Richards


Details Diff
DB Credentials leak in upgrade_unattended.php

Retrieve credentials from Mantis system configuration instead of
accepting them from POST parameters.

This issue was reported by Matthias Karlsson (http://mathiaskarlsson.me)
as part of Offensive Security's bug bounty program [1].

Fixes 0017877

[1] http://www.offensive-security.com/bug-bounty-program/

Signed-off-by: Damien Regad <dregad@mantisbt.org>
Affected Issues
0017877
mod - admin/upgrade_unattended.php Diff File