Posted by Egidio Romano on Dec 31

—————————————————————————–
Mantis Bug Tracker <= 1.2.17 (ImportXml.php) PHP Code Injection Vulnerability
—————————————————————————–

[-] Software Link:

http://www.mantisbt.org/

[-] Affected Versions:

All versions from 1.2.0 to 1.2.17.

[-] Vulnerability Description:

The vulnerable code is located in the…