SQL injection vulnerability in Bugzilla 2.16.3 and previous versions, and 2.17.1 up to and including 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.14.3 |
||
mozilla bugzilla 2.14.4 |
||
mozilla bugzilla 2.14.5 |
||
mozilla bugzilla 2.17.4 |
||
mozilla bugzilla 2.4 |
||
mozilla bugzilla 2.10 |
||
mozilla bugzilla 2.16 |
||
mozilla bugzilla 2.16.1 |
||
mozilla bugzilla 2.6 |
||
mozilla bugzilla 2.8 |
||
mozilla bugzilla 2.14.1 |
||
mozilla bugzilla 2.14.2 |
||
mozilla bugzilla 2.17.1 |
||
mozilla bugzilla 2.17.3 |
||
mozilla bugzilla 2.12 |
||
mozilla bugzilla 2.14 |
||
mozilla bugzilla 2.16.2 |
||
mozilla bugzilla 2.16.3 |