SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 up to and including 3.4.1, and 3.5, allows remote malicious users to execute arbitrary SQL commands via unspecified parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 3.5 |
||
mozilla bugzilla 3.3.2 |
||
mozilla bugzilla 3.3.3 |
||
mozilla bugzilla 3.4 |
||
mozilla bugzilla 3.3.4 |
||
mozilla bugzilla 3.4.1 |