2 matches found
CVE-2003-1042
SQL injection vulnerability in collectstats.pl for Bugzilla 2.16.3 and earlier allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name...
CVE-2003-1042
CVE-2003-1042 affects Bugzilla up to version 2.16.3. A SQL injection in the script collectstats.pl allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name, potentially compromising confidentiality, integrity, and availability. The provided docu...