Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:55 a.m.4 views

SUSE CVE-2010-4567

Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 does not properly handle whitespace preceding a 1 javascript: or 2 data: URI, which allows remote attackers to conduct cross-site scripting XSS attacks via the URL aka bugfileloc field...

4.3CVSS5.9AI score0.01785EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2012/02/12 12:0 a.m.29 views

Gentoo Security Advisory GLSA 201110-03 (bugzilla)

The remote host is missing updates announced in advisory GLSA 201110-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.4AI score0.02713EPSS
Exploits5
OSV
OSV
added 2011/10/10 12:0 a.m.33 views

DSA-2322-1 bugzilla - several

Bulletin has no description...

7.5CVSS8.6AI score0.02531EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2011/02/03 12:0 a.m.29 views

Fedora 13 : bugzilla-3.4.10-1.fc13 (2011-0755)

Some serious security issues were discovered in Bugzilla and have been fixed in 3.4.10 and 3.6.4. See http://www.bugzilla.org/security/3.2.9/ for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has...

7.5CVSS8.1AI score0.02713EPSS
Exploits0References9
CVE
CVE
added 2011/01/28 3:0 p.m.92 views

CVE-2010-4567

CVE-2010-4567 affects Bugzilla: whitespace before javascript: or data: in the URL field allows XSS. Affected versions per description: Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2. Public notices across multiple advisories confirm the issue and provide ...

4.3CVSS5.6AI score0.01785EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder