18 matches found
EUVD-2002-1103
Malware in sbrugna...
EUVD-2012-4141
Malware in sbrugna...
EUVD-2002-1104
Malware in sbrugna...
Fedora 19 : python-bugzilla-0.9.0-1.fc19 (2013-11336)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
Fedora 17 : python-bugzilla-0.9.0-1.fc17 (2013-11397)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
Fedora 18 : python-bugzilla-0.9.0-1.fc18 (2013-11419)
Rebased to version 0.9.0 - bugzilla: modify: add --dependson Don Zickus - bugzilla: new: add --groups option Paul Frields - bugzilla: modify: Allow setting nearly every bug parameter - NovellBugzilla implementation removed, can't get it to work - Gracefully handle private bugs bz 963979 - Raise...
CVE-2012-4197
Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 allows remote attackers to read attachment descriptions from private bugs via an obsolete=1 insert action...
Deserialization of untrusted data
Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 allows remote attackers to read attachment descriptions from private bugs via an obsolete=1 insert action...
CVE-2012-4197
Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 allows remote attackers to read attachment descriptions from private bugs via an obsolete=1 insert action...
Fedora 11 : bugzilla-3.2.6-2.fc11 (2010-1458)
This version of Bugzilla fixes security issues that were found in previous versions of the software where private bugs could be made public and configuration files were exposed to the world. CVE Numbers: CVE-2009-3989 and CVE-2009-3387 See upstream security advisory for additional details:...
Debian: Security Advisory (DSA-944-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2005-4523
Mantis 1.0.0rc3 and earlier discloses private bugs via public RSS feeds, which allows remote attackers to obtain sensitive information...
Multiple Bugzilla bug tracking system vulnerabilities
It's possible to change bug flag and, under rare condition to view private bugs by unprivileged user...
bugzilla -- multiple vulnerabilities
A Bugzilla Security Advisory reports: Any user can change any flag on any bug, even if they don't have access to that bug, or even if they can't normally make bug changes. This also allows them to expose the summary of a bug. Bugs are inserted into the database before they are marked as private, ...
CVE-2002-1116
The "View Bugs" page viewallbugpage.php in Mantis 0.17.4a and earlier includes summaries of private bugs for users that do not have access to any projects...
CVE-2002-1115
Mantis 0.17.4a and earlier allows remote attackers to view private bugs by modifying the fid bug ID parameter to 1 bugupdateadvancedpage.php, 2 bugupdatepage.php, 3 viewbugadvancedpage.php, or 4 viewbugpage.php...
CVE-2002-1115
Mantis 0.17.4a and earlier allows remote attackers to view private bugs by modifying the fid bug ID parameter to 1 bugupdateadvancedpage.php, 2 bugupdatepage.php, 3 viewbugadvancedpage.php, or 4 viewbugpage.php...
[Mantis Advisory/2002-07] Bugs in private projects listed on 'View Bugs'
Mantis Advisory/2002-07 Bugs in private projects listed on 'View Bugs' 0. Table of Contents 1. Introduction 2. Summary / Impact analysis 3. Affected versions 4. Workaround / Solution 5. Proof of Vulnerability 6. Credit 7. Contact details 1. Introduction Mantis is an Open Source web-based...