Bugzilla prior to 2.14 stores user passwords in plaintext and sends password requests in an email message, which could allow malicious users to gain privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.10 |
||
mozilla bugzilla 2.6 |
||
mozilla bugzilla 2.4 |
||
mozilla bugzilla 2.12 |
||
mozilla bugzilla 2.8 |
||
mozilla bugzilla 2.14 |