Gentoo Linux Security Advisory GLSA 200509-16 - Mantis fails to properly sanitize untrusted input before using it. This leads to an SQL injection and several cross-site scripting vulnerabilities. Versions less than 0.19.2 are affected.
7943ef5dd4c3e9711bd373818cc301f5f129200015fc560385abe50b03004649
Debian Security Advisory DSA 778-1 - Two security related problems have been discovered in Mantis, a web-based bug tracking system. The bugs related to arbitrary HTML and SQL injection flaws.
66399fa36baef0dcd20bb6617eaab029be6ba7317c605800b6806bbc09cceee5