CVE-2025-55155: 
PHP Schwachstellenanalyse und -minderung

MantisBT versions prior to 2.27.2 contain a security vulnerability (CVE-2025-55155) where the system lacks proper verification when users change their email addresses. The vulnerability was discovered by Chaitanya Reddy (@ncrcs) and disclosed on May 24, 2025. The issue affects the user profile email change functionality in MantisBT (GitHub Advisory).

The vulnerability stems from the system's failure to validate new email addresses before implementing changes in user profiles. When a user edits their profile to modify their email address, the system saves the change without verifying ownership of the new address. The vulnerability has been assigned a CVSS v3.1 score of 5.4 (Moderate) with the following vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N. The issue is classified under CWE-201 (Insertion of Sensitive Information Into Sent Data) and CWE-345 (Insufficient Verification of Data Authenticity) (GitHub Advisory).

The vulnerability can lead to two primary security issues: 1) Storage of invalid email addresses, preventing users from receiving important system notifications, and 2) Potential information disclosure through system notifications being sent to unauthorized email addresses. This could result in sensitive information being exposed to unintended recipients (GitHub Advisory, Miggo Database).

The vulnerability has been patched in MantisBT version 2.27.2. The fix implements email verification when changing email addresses, requiring users to confirm ownership of new email addresses before changes take effect. No workarounds are available for unpatched versions. Organizations should upgrade to version 2.27.2 or later to address this vulnerability (GitHub Advisory, MantisBT Bugs).