Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mozilla bugzilla 3.4.4 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-3387
Bugzilla 3.3.1 up to and including 3.4.4, 3.5.1, and 3.5.2 does not allow group restrictions to be preserved throughout the process of moving a bug to a different product category, which allows remote malicious users to obtain sensitive information via a request for a bug in oppo...
Mozilla Bugzilla 3.4.2
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.3.2
Mozilla Bugzilla 3.3.3
Mozilla Bugzilla 3.3.4
Mozilla Bugzilla 3.4
Mozilla Bugzilla 3.4.1
Mozilla Bugzilla 3.3.1
Mozilla Bugzilla 3.5.1
Mozilla Bugzilla 3.5.2
5
CVSSv2
CVE-2010-1204
Search.pm in Bugzilla 2.17.1 up to and including 3.2.6, 3.3.1 up to and including 3.4.6, 3.5.1 up to and including 3.6, and 3.7 allows remote malicious users to obtain potentially sensitive time-tracking information via a crafted search URL, related to a "boolean chart searc...
Mozilla Bugzilla 2.17.1
Mozilla Bugzilla 3.0.1
Mozilla Bugzilla 3.0.3
Mozilla Bugzilla 3.0.8
Mozilla Bugzilla 3.0.10
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.2.1
Mozilla Bugzilla 3.2.3
Mozilla Bugzilla 3.4
Mozilla Bugzilla 3.4.2
Mozilla Bugzilla 3.5.3
Mozilla Bugzilla 3.7
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.0.5
Mozilla Bugzilla 3.0.6
Mozilla Bugzilla 3.0.7
Mozilla Bugzilla 3.2.5
Mozilla Bugzilla 3.2.6
Mozilla Bugzilla 3.3.1
Mozilla Bugzilla 3.3.3
Mozilla Bugzilla 2.17.4
Mozilla Bugzilla 2.17.5
4
CVSSv2
CVE-2010-2759
Bugzilla 2.23.1 up to and including 3.2.7, 3.3.1 up to and including 3.4.7, 3.5.1 up to and including 3.6.1, and 3.7 up to and including 3.7.2, when PostgreSQL is used, does not properly handle large integers in (1) bug and (2) attachment phrases, which allows remote authenticate...
Mozilla Bugzilla 2.8
Mozilla Bugzilla 2.9
Mozilla Bugzilla 3.0.3
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.2.5
Mozilla Bugzilla 3.2.6
Mozilla Bugzilla 3.2.7
Mozilla Bugzilla 3.4.3
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.6.1
Mozilla Bugzilla 3.7
Mozilla Bugzilla 2.23.1
Mozilla Bugzilla 2.23.2
Mozilla Bugzilla 3.0
Mozilla Bugzilla 3.0.0
Mozilla Bugzilla 3.0.5
Mozilla Bugzilla 3.0.6
Mozilla Bugzilla 3.2.4
Mozilla Bugzilla 3.2.3
Mozilla Bugzilla 3.3.1
Mozilla Bugzilla 3.3.2
6.5
CVSSv2
CVE-2010-2757
The sudo feature in Bugzilla 2.22rc1 up to and including 3.2.7, 3.3.1 up to and including 3.4.7, 3.5.1 up to and including 3.6.1, and 3.7 up to and including 3.7.2 does not properly send impersonation notifications, which makes it easier for remote authenticated users to imperson...
Mozilla Bugzilla 2.22.5
Mozilla Bugzilla 2.22.6
Mozilla Bugzilla 2.23.4
Mozilla Bugzilla 2.4
Mozilla Bugzilla 3.0.11
Mozilla Bugzilla 3.0.2
Mozilla Bugzilla 3.0.9
Mozilla Bugzilla 3.0
Mozilla Bugzilla 3.2
Mozilla Bugzilla 2.22.7
Mozilla Bugzilla 2.22
Mozilla Bugzilla 2.6
Mozilla Bugzilla 2.8
Mozilla Bugzilla 3.0.3
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.1.0
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.1.3
Mozilla Bugzilla 3.2.6
Mozilla Bugzilla 3.4.3
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.6
5
CVSSv2
CVE-2011-2380
Bugzilla 2.23.3 up to and including 2.22.7, 3.0.x up to and including 3.3.x, 3.4.x prior to 3.4.12, 3.5.x, 3.6.x prior to 3.6.6, 3.7.x, 4.0.x prior to 4.0.2, and 4.1.x prior to 4.1.3 allows remote malicious users to determine the existence of private group names via a crafted par...
Mozilla Bugzilla 2.23.3
Mozilla Bugzilla 2.23.1
Mozilla Bugzilla 2.23.2
Mozilla Bugzilla 2.22.7
Mozilla Bugzilla 2.23
Mozilla Bugzilla 3.4
Mozilla Bugzilla 3.4.1
Mozilla Bugzilla 3.4.2
Mozilla Bugzilla 3.4.3
Mozilla Bugzilla 3.4.11
Mozilla Bugzilla 3.4.8
Mozilla Bugzilla 3.4.10
Mozilla Bugzilla 3.4.7
Mozilla Bugzilla 3.4.9
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.4.6
Mozilla Bugzilla 3.4.5
Mozilla Bugzilla 3.5.2
Mozilla Bugzilla 3.5.3
Mozilla Bugzilla 3.5.1
Mozilla Bugzilla 3.5
Mozilla Bugzilla 3.6.2
4.3
CVSSv2
CVE-2009-3989
Bugzilla prior to 3.0.11, 3.2.x prior to 3.2.6, 3.4.x prior to 3.4.5, and 3.5.x prior to 3.5.3 does not block access to files and directories that are used by custom installations, which allows remote malicious users to obtain sensitive information via requests for (1) CVS/, (2) ...
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.0.6
Mozilla Bugzilla 3.0.7
Mozilla Bugzilla 3.0.9
Mozilla Bugzilla 3.4.2
Mozilla Bugzilla 3.4.3
Mozilla Bugzilla 2.20
Mozilla Bugzilla 2.20.1
Mozilla Bugzilla 2.22.5
Mozilla Bugzilla 2.22.4
Mozilla Bugzilla 2.18.4
Mozilla Bugzilla 2.18.5
Mozilla Bugzilla 2.18.6
Mozilla Bugzilla 2.18.2
Mozilla Bugzilla 2.18.3
Mozilla Bugzilla 2.16.8
Mozilla Bugzilla 2.16.7
Mozilla Bugzilla 2.16.1
Mozilla Bugzilla 2.16
Mozilla Bugzilla 2.12
Mozilla Bugzilla 2.10
Mozilla Bugzilla 3.4
5
CVSSv2
CVE-2010-2756
Search.pm in Bugzilla 2.19.1 up to and including 3.2.7, 3.3.1 up to and including 3.4.7, 3.5.1 up to and including 3.6.1, and 3.7 up to and including 3.7.2 allows remote malicious users to determine the group memberships of arbitrary users via vectors involving the Search interfa...
Mozilla Bugzilla 2.19.1
Mozilla Bugzilla 2.20.4
Mozilla Bugzilla 2.20.5
Mozilla Bugzilla 2.21.2
Mozilla Bugzilla 2.22
Mozilla Bugzilla 2.23
Mozilla Bugzilla 2.9
Mozilla Bugzilla 3.0
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.0.5
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.2.5
Mozilla Bugzilla 3.2.4
Mozilla Bugzilla 3.2.7
Mozilla Bugzilla 3.3.1
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.4.5
Mozilla Bugzilla 3.7
Mozilla Bugzilla 3.7.1
Mozilla Bugzilla 2.20.2
Mozilla Bugzilla 2.20.3
Mozilla Bugzilla 2.21
5
CVSSv2
CVE-2010-2758
Bugzilla 2.17.1 up to and including 3.2.7, 3.3.1 up to and including 3.4.7, 3.5.1 up to and including 3.6.1, and 3.7 up to and including 3.7.2 generates different error messages depending on whether a product exists, which makes it easier for remote malicious users to guess produ...
Mozilla Bugzilla 2.19.3
Mozilla Bugzilla 2.2
Mozilla Bugzilla 2.20
Mozilla Bugzilla 2.20.7
Mozilla Bugzilla 2.22.3
Mozilla Bugzilla 2.20.3
Mozilla Bugzilla 2.20.4
Mozilla Bugzilla 2.21.1
Mozilla Bugzilla 2.21.2
Mozilla Bugzilla 2.22.7
Mozilla Bugzilla 2.22
Mozilla Bugzilla 2.8
Mozilla Bugzilla 2.9
Mozilla Bugzilla 3.0.3
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.1.0
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.2.6
Mozilla Bugzilla 3.2.7
Mozilla Bugzilla 3.4.3
Mozilla Bugzilla 3.4.4
Mozilla Bugzilla 3.6
4.3
CVSSv2
CVE-2011-2381
CRLF injection vulnerability in Bugzilla 2.17.1 up to and including 2.22.7, 3.0.x up to and including 3.3.x, 3.4.x prior to 3.4.12, 3.5.x, 3.6.x prior to 3.6.6, 3.7.x, 4.0.x prior to 4.0.2, and 4.1.x prior to 4.1.3 allows remote malicious users to inject arbitrary e-mail headers ...
Mozilla Bugzilla 2.17.7
Mozilla Bugzilla 2.18.4
Mozilla Bugzilla 2.18.2
Mozilla Bugzilla 2.19.1
Mozilla Bugzilla 2.19.2
Mozilla Bugzilla 2.20
Mozilla Bugzilla 2.20.6
Mozilla Bugzilla 2.22.2
Mozilla Bugzilla 2.22.1
Mozilla Bugzilla 2.22
Mozilla Bugzilla 2.17.5
Mozilla Bugzilla 2.17.6
Mozilla Bugzilla 2.17.1
Mozilla Bugzilla 2.18
Mozilla Bugzilla 2.20.7
Mozilla Bugzilla 2.20.4
Mozilla Bugzilla 2.21.2
Mozilla Bugzilla 2.22.5
Mozilla Bugzilla 2.22.4
Mozilla Bugzilla 2.17.3
Mozilla Bugzilla 2.17.4
Mozilla Bugzilla 2.18.5
7.5
CVSSv2
CVE-2010-4568
Bugzilla 2.14 up to and including 2.22.7; 3.0.x, 3.1.x, and 3.2.x prior to 3.2.10; 3.4.x prior to 3.4.10; 3.6.x prior to 3.6.4; and 4.0.x prior to 4.0rc2 does not properly generate random values for cookies and tokens, which allows remote malicious users to obtain access to arbit...
Mozilla Bugzilla 2.14.5
Mozilla Bugzilla 2.16
Mozilla Bugzilla 2.16.5
Mozilla Bugzilla 2.16.6
Mozilla Bugzilla 2.17.4
Mozilla Bugzilla 2.17.5
Mozilla Bugzilla 2.18.3
Mozilla Bugzilla 2.18.4
Mozilla Bugzilla 2.19.2
Mozilla Bugzilla 2.19.3
Mozilla Bugzilla 2.20
Mozilla Bugzilla 2.21
Mozilla Bugzilla 2.21.1
Mozilla Bugzilla 2.22.5
Mozilla Bugzilla 2.22.6
Mozilla Bugzilla 2.14.3
Mozilla Bugzilla 2.14.4
Mozilla Bugzilla 2.16.3
Mozilla Bugzilla 2.16.4
Mozilla Bugzilla 2.17.1
Mozilla Bugzilla 2.17.3
Mozilla Bugzilla 2.18.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »