Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2008/05/07 8:7 p.m.26 views

CVE-2008-2105

emailin.pl in Bugzilla 2.23.4, 3.0.x before 3.0.4, and 3.1.x before 3.1.4 allows remote authenticated users to more easily spoof the changer of a bug via a @reporter command in the body of an e-mail message, which overrides the e-mail address as normally obtained from the From e-mail header. NOTE...

6AI score0.00568EPSS
Exploits0References10
CVE
CVEadded 2008/05/07 8:7 p.m.44 views

CVE-2008-2105

CVE-2008-2105 affects Bugzilla: vulnerable in Bugzilla 2.23.4 and 3.0.x before 3.0.4, and 3.1.x before 3.1.4. A remote authenticated user can abuse the @reporter command in the body of an email to spoof the bug changer, overriding the address from the From header. This bypasses normal From-header...

3.5CVSS6AI score0.00568EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessusadded 2007/09/24 12:0 a.m.21 views

FreeBSD : bugzilla -- multiple vulnerabilities (75231c63-f6a2-499d-8e27-787773bda284)

A Bugzilla Security Advisory reports : This advisory covers three security issues that have recently been fixed in the Bugzilla code : - A possible cross-site scripting XSS vulnerability when filing bugs using the guided form. - When using emailin.pl, insufficiently escaped data may be passed to...

5CVSS5.2AI score0.0087EPSS
Exploits3References5
NVD
NVDadded 2007/08/27 9:17 p.m.12 views

CVE-2007-4538

emailin.pl in Bugzilla 2.23.4 through 3.0.0 allows remote attackers to execute arbitrary commands via the -f From address option to the Email::Send::Sendmail function, probably involving shell metacharacters...

5CVSS7.5AI score0.0087EPSS
Exploits1References11
CVE
CVEadded 2007/08/27 9:0 p.m.46 views

CVE-2007-4538

CVE-2007-4538 affects Bugzilla 2.23.4–3.0.0 via the email_in.pl path. The vulnerability arises when using Email::Send::Sendmail with the -f From address, enabling remote attackers to inject shell metacharacters and execute arbitrary commands. Exploitation is described in multiple sources (includi...

5CVSS7.4AI score0.0087EPSS
Exploits1References11Affected Software1
Cvelist
Cvelistadded 2007/08/27 9:0 p.m.16 views

CVE-2007-4538

emailin.pl in Bugzilla 2.23.4 through 3.0.0 allows remote attackers to execute arbitrary commands via the -f From address option to the Email::Send::Sendmail function, probably involving shell metacharacters...

7.4AI score0.0087EPSS
Exploits1References11
FreeBSD
FreeBSDadded 2007/08/23 12:0 a.m.18 views

bugzilla -- multiple vulnerabilities

A Bugzilla Security Advisory reports: This advisory covers three security issues that have recently been fixed in the Bugzilla code: A possible cross-site scripting XSS vulnerability when filing bugs using the guided form. When using emailin.pl, insufficiently escaped data may be passed to...

5CVSS5.6AI score0.0087EPSS
Exploits2References1
Rows per page
Query Builder