8.1 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.4%
SQL injection vulnerability in the Bug.create WebService function in Bugzilla 2.23.4 through 3.0.8, 3.1.1 through 3.2.4, and 3.3.1 through 3.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.
secunia.com/advisories/36718
www.bugzilla.org/security/3.0.8/
www.securityfocus.com/bid/36373
bugzilla.mozilla.org/show_bug.cgi?id=515191