Lucene search
HistoryJan 02, 2012 - 7:55 p.m.
CVE-2011-3669
bugzilla
csrf
vulnerability
attachment.cgi
nvd
cve-2011-3669
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.5%
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.x before 4.2rc1 allows remote attackers to hijack the authentication of arbitrary users for requests that upload attachments.
Related
prion
prion
Cross site request forgery (csrf)
2012-01-02 19:55:00
ubuntucve
ubuntucve
CVE-2011-3669
2012-01-02 00:00:00
freebsd
freebsd
bugzilla -- multiple vulnerabilities
2011-11-28 00:00:00
openvas
openvas
Fedora Update for bugzilla FEDORA-2012-0328
2012-01-20 00:00:00
Fedora Update for bugzilla FEDORA-2012-0328
2012-01-20 00:00:00
FreeBSD Ports: bugzilla
2012-02-13 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: bugzilla-3.6.7-1.fc15
2012-01-19 01:30:41
[SECURITY] Fedora 16 Update: bugzilla-4.0.3-1.fc16
2012-01-19 01:30:20
nessus
nessus
Fedora 15 : bugzilla-3.6.7-1.fc15 (2012-0328)
2012-01-19 00:00:00
FreeBSD : bugzilla -- multiple vulnerabilities (0c7a3ee2-3654-11e1-b404-20cf30e32f6d)
2012-01-06 00:00:00
Fedora 16 : bugzilla-4.0.3-1.fc16 (2012-0301)
2012-01-19 00:00:00
6.9 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.5%
Related for CVE-2011-3669