Search.pm in Bugzilla 2.17.1 up to and including 3.2.6, 3.3.1 up to and including 3.4.6, 3.5.1 up to and including 3.6, and 3.7 allows remote malicious users to obtain potentially sensitive time-tracking information via a crafted search URL, related to a "boolean chart search."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mozilla bugzilla 2.17.1 |
||
mozilla bugzilla 3.0.1 |
||
mozilla bugzilla 3.0.3 |
||
mozilla bugzilla 3.0.8 |
||
mozilla bugzilla 3.0.10 |
||
mozilla bugzilla 3.1.1 |
||
mozilla bugzilla 3.2.1 |
||
mozilla bugzilla 3.2.3 |
||
mozilla bugzilla 3.4 |
||
mozilla bugzilla 3.4.2 |
||
mozilla bugzilla 3.5.3 |
||
mozilla bugzilla 3.7 |
||
mozilla bugzilla 3.0.4 |
||
mozilla bugzilla 3.0.5 |
||
mozilla bugzilla 3.0.6 |
||
mozilla bugzilla 3.0.7 |
||
mozilla bugzilla 3.2.5 |
||
mozilla bugzilla 3.2.6 |
||
mozilla bugzilla 3.3.1 |
||
mozilla bugzilla 3.3.3 |
||
mozilla bugzilla 2.17.4 |
||
mozilla bugzilla 2.17.5 |
||
mozilla bugzilla 2.17.6 |
||
mozilla bugzilla 2.17.7 |
||
mozilla bugzilla 3.1.2 |
||
mozilla bugzilla 3.1.3 |
||
mozilla bugzilla 3.1.4 |
||
mozilla bugzilla 3.2 |
||
mozilla bugzilla 3.4.3 |
||
mozilla bugzilla 3.4.4 |
||
mozilla bugzilla 3.4.5 |
||
mozilla bugzilla 3.4.6 |
||
mozilla bugzilla 3.5.1 |
||
mozilla bugzilla 2.17.3 |
||
mozilla bugzilla 3.0 |
||
mozilla bugzilla 3.0.2 |
||
mozilla bugzilla 3.0.9 |
||
mozilla bugzilla 3.0.11 |
||
mozilla bugzilla 3.2.2 |
||
mozilla bugzilla 3.2.4 |
||
mozilla bugzilla 3.3.4 |
||
mozilla bugzilla 3.4.1 |
||
mozilla bugzilla 3.5.2 |
||
mozilla bugzilla 3.6 |