Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-h5vc-337f-mrrj

Опубликовано: 02 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

Ссылки

EPSS

Процентиль: 57%
0.00347
Низкий

CVE ID

CVE-2009-1213

Дефекты

CWE-352

Связанные уязвимости

ubuntu логотип

CVE-2009-1213

ubuntu
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

redhat логотип

CVE-2009-1213

redhat
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

nvd логотип

CVE-2009-1213

nvd
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows remote attackers to hijack the authentication of arbitrary users for requests that use attachment editing.

debian логотип

CVE-2009-1213

debian
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in attachment.cgi in B ...

EPSS

Процентиль: 57%
0.00347
Низкий

CVE ID

CVE-2009-1213

Дефекты

CWE-352