Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:26 a.m.8 views

CVE-2013-1733

Cross-site request forgery CSRF vulnerability in processbug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a midair-collision token...

6.8CVSS7.5AI score0.00579EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2014-0199)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.4AI score0.02824EPSS
Exploits3References8
Cvelist
Cvelist
added 2013/10/24 10:0 a.m.29 views

CVE-2013-1733

Cross-site request forgery CSRF vulnerability in processbug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a midair-collision token...

7AI score0.00579EPSS
Exploits1References2
CVE
CVE
added 2013/10/24 10:0 a.m.68 views

CVE-2013-1733

CVE-2013-1733 affects Bugzilla 4.4.x prior to 4.4.1. A CSRF flaw in process_bug.cgi enables remote attackers to hijack a user’s session to modify bugs via requests authenticated with a midair-collision token. CVSSv2 base score 6.8 (AV:N/AC:M/Au:N/C:P/I:P/A:P). Remediation: upgrade to Bugzilla 4.4...

6.8CVSS7.1AI score0.00579EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder