FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

bugzilla -- multiple vulnerabilities

Affected packages
2.17.1 <= bugzilla < 2.20.1
2.17.1 <= ja-bugzilla < 2.20.1

Details

VuXML ID 46f7b598-a781-11da-906a-fde5cdde365e
Discovery 2006-02-20
Entry 2006-02-27
Modified 2006-11-11

Some vulnerabilities have been reported in Bugzilla, which can be exploited by malicious users to conduct SQL injection attacks, and by malicious people to disclose sensitive information and conduct script insertion attacks.

References

CVE Name CVE-2006-0913
CVE Name CVE-2006-0914
CVE Name CVE-2006-0915
CVE Name CVE-2006-0916
CVE Name CVE-2006-2420
URL http://www.bugzilla.org/security/2.18.4/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.