CVE-2025-62520: 
PHP Schwachstellenanalyse und -minderung

CVE-2025-62520 affects MantisBT (Mantis Bug Tracker) versions prior to 2.27.2. The vulnerability allows any non-admin user with MANAGER role to access column configurations from private projects they don't have access to through the manageconfigcolumns_page.php interface (GitHub Advisory, MantisBT Issue).

The vulnerability stems from insufficient access-level checks in the managecolumnscopy.php file when using the 'Copy From' action. While access controls were properly implemented for the 'Copy To' operation, the source project access verification was missing, allowing unauthorized users to retrieve column configurations from private projects (GitHub Commit). The vulnerability has a CVSS v4 base score of 5.3 (Moderate) with metrics AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N (GitHub Advisory).

The vulnerability allows unauthorized access to private project column configurations, potentially exposing sensitive information about project structure and organization. While the impact is limited to column configuration data and does not allow modification of private projects, it represents a breach of access control mechanisms (GitHub Advisory).

The vulnerability has been fixed in MantisBT version 2.27.2 by adding proper access level checks for the source project when copying column configurations. No workarounds are available for affected versions; upgrading to version 2.27.2 or later is required (GitHub Advisory).