CVE-2003-1042

Опубликовано: 18 авг. 2004

Источник: debian

Описание

SQL injection vulnerability in collectstats.pl for Bugzilla 2.16.3 and earlier allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
bugzilla	fixed	2.16.4-1		package

Связанные уязвимости

CVE-2003-1042

nvd

больше 21 года назад

SQL injection vulnerability in collectstats.pl for Bugzilla 2.16.3 and earlier allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name.

GHSA-phj7-qm5x-fx2h

github

почти 4 года назад

SQL injection vulnerability in collectstats.pl for Bugzilla 2.16.3 and earlier allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name.