MantisBT

MantisBT 1.2.9 release delivers 92 fixes and improvements including security fixes, new MantisBT logo, MantisTouch integration, MS SQL fixes, SOAP API improvements, and others.  We recommend that all instances be upgraded to this release. A full changelog for 1.2.9 can … Continue reading →

Several years ago, we’ve provided a MantisBT phone optimized interface using MantisWAP, since then the smart phone market has changed significantly.  The smart phones are much more capable, more users have them and expectation is that all services have phone … Continue reading →

Hi all, MantisBT 1.2.8 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Paulino Calderon from Websec, High-Tech Bridge Security Research Lab and ... [More] Paul Richards discovered 3 vulnerabilities: – 1x local file inclusion (LFI)/directory traversal – 2x cross site scriptin (XSS) These [...] [Less]

Howdy all, MantisBT 1.2.7 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Net.Edit0r from BlACK Hat Group posted a vulnerability report for an ... [More] XSS issue in search.php. All MantisBT users (including anonymous users that are not logged in to public [...] [Less]

Hi all, MantisBT 1.2.6 is a maintenance update for the stable 1.2.x branch. It is recommended that all MantisBT users (including those still using 1.1.x or earlier versions) upgrade to this latest release. This release brings bug fixes and ... [More] improvements across a range of MantisBT features, especially the SOAP API, authentication, time tracking, and billing areas. Documentation [...] [Less]

Hi all, I’d like to announce that as of now, the primary Git repositories for the MantisBT project are hosted at Github [1], using the “mantisbt” organization for all official code repositories. I’ve also renamed the development tools repository from “mantisbt-dev” to “mantisbt-tools” for sake of clarity. Commit emails will now be sent to [...]

Hi all, MantisBT 1.2.5 is a maintenance update for the stable 1.2.x branch. It is recommended that all MantisBT users (including those still using 1.1.x or earlier versions) upgrade to this latest release. This release brings improved translations in ... [More] many languages as well as numerous bug fixes across a range of MantisBT features. A full changelog for 1.2.5 [...] [Less]

Work is well underway towards modernising the user interface of MantisBT. The first step being taken towards this goal is to ensure that MantisBT 1.3.x produces XHTML strict page output. Bug #12545 tracks progress towards removing deprecated HTML 4 ... [More] (and earlier) features from MantisBT page output and replacing them with modern equivalents. For instance, the [...] [Less]

In November of 2010 I provided a progress update on work performed to ensure MantisBT 1.3.x fully supports the X-Content-Security-Policy feature of Firefox 4. At the time, MantisBT was only providing partial support of X-Content-Security-Policy due ... [More] to a large amount of inline JavaScript contained within pages MantisBT was returning to clients. I am pleased to [...] [Less]

Howdy all, MantisBT 1.2.4 is a security update for the stable 1.2.x branch. All installations that are currently running any 1.2.x version are advised to upgrade to this release. Gjoko Krstic of Zero Science Lab reported multiple vulnerabilities in ... [More] the admin/upgrade_unattended.php script. Issue #12607 provides more detail on the vulnerabilities discovered. We thank Gjoko for his detailed [...] [Less]