DBI in Bugzilla 2.17.1 up to and including 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote malicious users to gain sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.14.2 |
||
mozilla bugzilla 2.14.3 |
||
mozilla bugzilla 2.16.4 |
||
mozilla bugzilla 2.16.5 |
||
mozilla bugzilla 2.4 |
||
mozilla bugzilla 2.6 |
||
mozilla bugzilla 2.14 |
||
mozilla bugzilla 2.14.1 |
||
mozilla bugzilla 2.16.2 |
||
mozilla bugzilla 2.16.3 |
||
mozilla bugzilla 2.17.6 |
||
mozilla bugzilla 2.17.7 |
||
mozilla bugzilla 2.14.4 |
||
mozilla bugzilla 2.14.5 |
||
mozilla bugzilla 2.17 |
||
mozilla bugzilla 2.17.1 |
||
mozilla bugzilla 2.17.3 |
||
mozilla bugzilla 2.8 |
||
mozilla bugzilla 2.10 |
||
mozilla bugzilla 2.12 |
||
mozilla bugzilla 2.16 |
||
mozilla bugzilla 2.16.1 |
||
mozilla bugzilla 2.17.4 |
||
mozilla bugzilla 2.17.5 |