MantisBT - Site
View Issue Details
IDProjectCategoryView StatusDate SubmittedLast Update
0003603Site[All Projects] Securitypublic2019-02-07 14:042022-05-31 01:32
ReporterWubTheCaptain 
Assigned To 
PrioritynormalSeverityfeatureReproducibilitysometimes
StatusnewResolutionopen 
PlatformOSOS Version
Summary0003603: Zandronum tracker runs an old version of MantisBT?
DescriptionI recall Blzut3 said something privately to me a while ago about not having time or interest to update this MantisBT issue tracker. I don't know if anything has changed since, or how vulnerable the current release of MantisBT might be.

Please remember to update, Blzut3. The latest release of MantisBT is version 2.19.0, as of writing this.
Steps To Reproduce
Additional Information
TagsNo tags attached.
Relationships
Attached Files
Issue History
Date ModifiedUsernameFieldChange
2019-02-07 14:04WubTheCaptainNew Issue
2022-05-30 02:43WubTheCaptainNote Added: 0022249
2022-05-30 02:58WubTheCaptainNote Added: 0022250
2022-05-30 03:02WubTheCaptainNote Edited: 0022250bug_revision_view_page.php?bugnote_id=22250#r13633
2022-05-30 23:53Blzut3Note Added: 0022253
2022-05-31 01:32WubTheCaptainNote Added: 0022256

Notes
(0022249)
WubTheCaptain   
2022-05-30 02:43   
I am quietly reminding myself on occasionally about this when visiting the tracker, only today I remembered to make a note in this reported issue to ask about it again. What's up?
(0022250)
WubTheCaptain   
2022-05-30 02:58   
(edited on: 2022-05-30 03:02)
The last thing I knew in 2019 was that this tracker was running on a software version from year 2010-2014. There's been up to 68 CVEs reported since 2010-2014 (including one CVE score 6.5 remote code execution), which may or may not apply to the current software version running on the tracker.
(0022253)
Blzut3   
2022-05-30 23:53   
I still sadly don't have time to maintain the website beyond the bare minimum. I haven't actively been in contact with others here in years, so I don't know if anyone has been doing any active maintenance.
(0022256)
WubTheCaptain   
2022-05-31 01:32   
If "bare minimum" means no security updates, this seems like a bad joke. How does one find out what maintenance has been done?