Authentication Bypass Vulnerability in Mantis Bug Tracker by MantisBT
CVE-2025-47776

8.8HIGH

Key Information:

Vendor: Mantisbt
Status: Mantisbt
Vendor: CVE Published:; 4 November 2025

What is CVE-2025-47776?

Mantis Bug Tracker is susceptible to an authentication bypass due to improper comparison logic in its authentication protocol. The vulnerability arises from the use of loose comparisons (==) instead of strict comparisons (===) within the authentication code in versions 2.27.1 and earlier. This flaw enables attackers who are aware of a user's username to log in without knowing the actual password, provided they have a password hash that evaluates to zero. Specifically, any input that matches the MD5 hash in scientific notation can lead to unauthorized access. The issue has been addressed and resolved in version 2.27.2.

Affected Version(s)

mantisbt < 2.27.2

References

https://github.com/mantisbt/mantisbt/security/advisories/...

x_refsource_CONFIRM

https://github.com/mantisbt/mantisbt/commit/966554a19cf1b...

x_refsource_MISC

CVSS V4

Score:

8.8

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 4, 2025
Vulnerability Reserved
May 9, 2025

JSON

Mantisbt

What is CVE-2025-47776?

Affected Version(s)

References

CVSS V4

Timeline