CVE-2009-3125

Опубликовано: 15 сент. 2009

Источник: debian

EPSS Низкий

Описание

SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 through 3.4.1, and 3.5, allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
bugzilla	fixed	3.4.7.0-1		package
bugzilla	not-affected		lenny	package

EPSS

Процентиль: 55%

0.00328

Низкий

Связанные уязвимости

CVE-2009-3125

ubuntu

больше 16 лет назад

SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 through 3.4.1, and 3.5, allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

CVE-2009-3125

nvd

больше 16 лет назад

SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 through 3.4.1, and 3.5, allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

GHSA-gggg-8p94-c53f

github

почти 4 года назад

SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 through 3.4.1, and 3.5, allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

EPSS

Процентиль: 55%

0.00328

Низкий