0.005 Low
EPSS
Percentile
76.0%
The Old Charts implementation in Bugzilla 2.12 through 3.2.8, 3.4.8, 3.6.2, 3.7.3, and 4.1 creates graph files with predictable names in graphs/, which allows remote attackers to obtain sensitive information via a modified URL.
launchpad.net/bugs/cve/CVE-2010-3764
nvd.nist.gov/vuln/detail/CVE-2010-3764
security-tracker.debian.org/tracker/CVE-2010-3764
www.cve.org/CVERecord?id=CVE-2010-3764