CVE-2006-0914

Опубликовано: 28 фев. 2006

Источник: debian

EPSS Низкий

Описание

Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in the mostfreqthreshold parameter in duplicates.cgi, which allows remote attackers to trigger a SQL error.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
bugzilla	fixed	2.20.1-1		package
bugzilla	not-affected		woody	package
bugzilla	not-affected		sarge	package

EPSS

Процентиль: 72%

0.00757

Низкий

Связанные уязвимости

CVE-2006-0914

ubuntu

больше 19 лет назад

Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in the mostfreqthreshold parameter in duplicates.cgi, which allows remote attackers to trigger a SQL error.

CVE-2006-0914

nvd

больше 19 лет назад

Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in the mostfreqthreshold parameter in duplicates.cgi, which allows remote attackers to trigger a SQL error.

GHSA-4cjg-mq5r-j9q6

github

больше 3 лет назад

Bugzilla 2.16.10, 2.17 through 2.18.4, and 2.20 does not properly handle certain characters in the mostfreqthreshold parameter in duplicates.cgi, which allows remote attackers to trigger a SQL error.

EPSS

Процентиль: 72%

0.00757

Низкий