Mastodawn

MantisBT 2.28.1 has been released 🚀

Security release addressing a critical vulnerability affecting the SOAP API on MySQL (CVE-2026-30849) and two HTML injection / XSS issues with tag names, as well as a few bugs including regressions introduced in 2.28.0.

https://mantisbt.org/blog/archives/mantisbt/811

⚠️ You should upgrade immediately if you're running on MySQL ⚠️

#mantisbt #security

MantisBT 2.28.1 Released – Mantis Bug Tracker – Blog

Ross McKay 6d ago

@mantisbt thank you for your advance notice, and especially a time frame for when to expect the fix release. Deployed 00:24 local time 🙂