Thanks for your report. The new mantis version 1.2.6-1 is going to be uploaded including this patch [1]
FYI: This issue just affected the new 1.2.x mantis versions. In debian, our currently supported versions 1.1.6+dfsg-2lenny4 and 1.1.8+dfsg-10 have been tested and they are not affected. Best regards, Sils [1] http://anonscm.debian.org/gitweb/?p=collab-maint/mantis.git;a=commit;h=6f1499b9623acab6b89ee940d4af54dcff746b44
signature.asc
Description: OpenPGP digital signature
