Lucene search
K

8 matches found

OpenVAS
OpenVAS
added 2009/07/29 12:0 a.m.17 views

Fedora Core 10 FEDORA-2009-7669 (bugzilla)

The remote host is missing an update to bugzilla announced via advisory FEDORA-2009-7669. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

6.8CVSS6.4AI score0.00691EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.24 views

Fedora Core 9 FEDORA-2009-3405 (bugzilla)

The remote host is missing an update to bugzilla announced via advisory FEDORA-2009-3405. OpenVAS Vulnerability Test $Id: fcore20093405.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-3405 bugzilla Authors: Thomas Reinke Copyright: Copyright c 2009...

6.8CVSS0.2AI score0.00691EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.16 views

Fedora Core 9 FEDORA-2009-3405 (bugzilla)

The remote host is missing an update to bugzilla announced via advisory FEDORA-2009-3405. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

6.8CVSS6.4AI score0.00691EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.26 views

Fedora Core 10 FEDORA-2009-3410 (bugzilla)

The remote host is missing an update to bugzilla announced via advisory FEDORA-2009-3410. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

6.8CVSS6.4AI score0.00691EPSS
Exploits1References2
seebug.org
seebug.org
added 2009/04/02 12:0 a.m.40 views

Bugzilla attachment.cgi跨站请求伪造漏洞

BUGTRAQ ID: 34308 CVECAN ID: CVE-2009-1213 Bugzilla是很多软件项目都在使用的基于Web的BUG跟踪系统。 Bugzilla允许用户通过HTTP请求执行某些操作,但没有对请求执行有效性检查。如果已登录用户受骗访问了恶意网页的话,就可能通过attachment.cgi提交附件。 Mozilla Bugzilla 3.3.3 Mozilla Bugzilla 3.2.2 Mozilla ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.mozilla.org/...

6.8CVSS6.4AI score0.00691EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2009/04/01 10:30 a.m.20 views

CVE-2009-1213

Cross-site request forgery CSRF vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing...

6.8CVSS6AI score0.00691EPSS
Exploits1References1
Cvelist
Cvelist
added 2009/04/01 10:0 a.m.44 views

CVE-2009-1213

Cross-site request forgery CSRF vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing...

6.9AI score0.00691EPSS
Exploits1References10
CVE
CVE
added 2009/04/01 10:0 a.m.61 views

CVE-2009-1213

Bugzilla CSRF: CVE-2009-1213 is a vulnerability in attachment.cgi that affects Bugzilla 3.2 before 3.2.3 and 3.3 before 3.3.4 (and earlier versions). The flaw allows remote attackers to hijack a user’s authenticated session when performing attachment editing, via Cross‑Site Request Forgery. Impac...

6.8CVSS7AI score0.00691EPSS
Exploits1References10Affected Software1
Rows per page
Query Builder