Bugzilla 2.14 prior to 2.14.2, and 2.16 prior to 2.16rc2, allows remote malicious users to display restricted products and components via a direct HTTP request to queryhelp.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.14.1 |
||
mozilla bugzilla 2.16 |
||
mozilla bugzilla 2.14 |