MantisBT 2.25.2 Released – Mantis Bug Tracker

In order to stay up to date with the latest MantisBT news, please star our GitHub repository, follow us on Twitter and retweet to spread the word!

Go ahead and download the release from our website.

MantisBT 2.25.2

This security and maintenance release fixes vulnerabilities in Custom Fields management page (CVE-2021-33557) and in the PHPMailer library, as well as a PHP 8 compatibility issue.

0028803: [custom fields] PHP 8: “Bad Request” error on custom field filters (dregad)
0028821: [security] Update PHPMailer to 6.5.0 (dregad)
0028552: [security] CVE-2021-33557: XSS in manage_custom_field_edit_page.php (dregad)