Описание
Bugzilla 2.16.x before 2.16.1 does not properly filter apostrophes from an email address during account creation, which allows remote attackers to execute arbitrary SQL via a SQL injection attack.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| bugzilla | fixed | 2.16.1-1 | package |
Примечания
woody seems to be vulnerable, bug #282500
EPSS
Процентиль: 65%
0.00502
Низкий
Связанные уязвимости
nvd
почти 23 года назад
Bugzilla 2.16.x before 2.16.1 does not properly filter apostrophes from an email address during account creation, which allows remote attackers to execute arbitrary SQL via a SQL injection attack.
github
больше 3 лет назад
Bugzilla 2.16.x before 2.16.1 does not properly filter apostrophes from an email address during account creation, which allows remote attackers to execute arbitrary SQL via a SQL injection attack.
EPSS
Процентиль: 65%
0.00502
Низкий