FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mantis -- multiple vulnerabilities

Affected packages
	mantis-php73	<	2.25.2,1
	mantis-php74	<	2.25.2,1
	mantis-php80	<	2.25.2,1

Details

VuXML ID	9b1699ff-d84c-11eb-92d6-1b6ff3dfe4d3
Discovery	2021-04-28
Entry	2021-07-09

Mantis 2.25.1 and 2.25.2 releases report:

Security and maintenance release, PHPMailer update to 6.5.0

0028552: XSS in manage_custom_field_edit_page.php (CVE-2021-33557)

0028821: Update PHPMailer to 6.5.0 (CVE-2021-3603, CVE-2020-36326)

[source]

References

CVE Name	CVE-2020-36326
CVE Name	CVE-2021-33557
CVE Name	CVE-2021-3603
URL	https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-36326
URL	https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33557
URL	https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-3603