Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-xxpv-mm3c-74x5

Опубликовано: 02 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

Ссылки

EPSS

Процентиль: 61%
0.00413
Низкий

CVE ID

CVE-2009-0485

Дефекты

CWE-352

Связанные уязвимости

ubuntu логотип

CVE-2009-0485

ubuntu
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

redhat логотип

CVE-2009-0485

redhat
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

nvd логотип

CVE-2009-0485

nvd
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

debian логотип

CVE-2009-0485

debian
больше 16 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2. ...

EPSS

Процентиль: 61%
0.00413
Низкий

CVE ID

CVE-2009-0485

Дефекты

CWE-352