6 matches found
Mageia: Security Advisory (MGASA-2016-0201)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2016-2803
Cross-site scripting XSS vulnerability in the dependency graphs in Bugzilla 2.16rc1 through 4.4.11, and 4.5.1 through 5.0.2 allows remote attackers to inject arbitrary web script or HTML...
CVE-2016-2803
CVE-2016-2803 is a cross-site scripting vulnerability in Bugzillaβs dependency graphs affecting versions 2.16rc1β4.4.11 and 4.5.1β5.0.2. The issue allows remote attackers to inject arbitrary web script or HTML. OpenVAS and Fedora advisories confirm the bug is exploitable via the Bugzilla dependen...
Fedora 22 : bugzilla (2016-5bd283c48b)
The bugzilla devs discovered that a specially crafted bug summary could trigger XSS in dependency graphs CVE-2016-2803. This release fixes the issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...
MGASA-2016-0201 Updated bugzilla packages fix CVE-2016-2803
Updated bugzilla packages fix security vulnerability: In Bugzilla before 4.4.12, due to an incorrect parsing of the image map generated by the dot script, a specially crafted bug summary could trigger XSS in dependency graphs CVE-2016-2803...
Updated bugzilla packages fix CVE-2016-2803
Updated bugzilla packages fix security vulnerability: In Bugzilla before 4.4.12, due to an incorrect parsing of the image map generated by the dot script, a specially crafted bug summary could trigger XSS in dependency graphs CVE-2016-2803...