Mantis Bug Tracker 1.1.1 CSRF Vulnerability - Security Report

On March 22, 2008, a security report regarding multiple vulnerabilities in version 1.1.1 of the software was published on the official Mantis Bug Tracker website, including a serious CSRF flaw. The advisory was signed by Francesco “ascii” Ongaro and Antonio “s4tan” Parata of the USH team, and described how an authenticated user could, through malicious links, create accounts with administrator privileges. The bug was registered with ID 0008995, confirmed by maintainer “thraxisp” and fixed in version 1.2.0a1 of the software, released on May 5, 2008.