CVE-2005-4524
Mantis 1.0.0rc3 does not properly handle "Make note private" when a bug is being resolved, which has unknown impact and attack vectors, probably related to an information leak.
Date published : 2005-12-27
http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963