Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 prior to 3.0.7, 3.2 prior to 3.2.1, and 3.3 prior to 3.3.2 allows remote malicious users to delete shared or saved searches via a link or IMG tag to buglist.cgi.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 3.0.2 |
||
mozilla bugzilla 3.0.3 |
||
mozilla bugzilla 3.0.0 |
||
mozilla bugzilla 3.0.1 |
||
mozilla bugzilla 3.3.1 |
||
mozilla bugzilla 3.0.4 |
||
mozilla bugzilla 3.0.5 |
||
mozilla bugzilla 3.0.6 |
||
mozilla bugzilla 3.2 |