Bugzilla 2.17.5 up to and including 2.17.7 embeds the password in an image URL, which could allow local users to view the password in the web server log files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.14 |
||
mozilla bugzilla 2.14.1 |
||
mozilla bugzilla 2.14.4 |
||
mozilla bugzilla 2.14.5 |
||
mozilla bugzilla 2.16 |
||
mozilla bugzilla 2.17.1 |
||
mozilla bugzilla 2.17.3 |
||
mozilla bugzilla 2.8 |
||
mozilla bugzilla 2.14.2 |
||
mozilla bugzilla 2.14.3 |
||
mozilla bugzilla 2.16.5 |
||
mozilla bugzilla 2.17 |
||
mozilla bugzilla 2.4 |
||
mozilla bugzilla 2.6 |
||
mozilla bugzilla 2.16.3 |
||
mozilla bugzilla 2.16.4 |
||
mozilla bugzilla 2.17.6 |
||
mozilla bugzilla 2.17.7 |
||
mozilla bugzilla 2.10 |
||
mozilla bugzilla 2.12 |
||
mozilla bugzilla 2.16.1 |
||
mozilla bugzilla 2.16.2 |
||
mozilla bugzilla 2.17.4 |
||
mozilla bugzilla 2.17.5 |