exploitDog

CVE-2009-0484

Опубликовано: 09 фев. 2009

Источник: redhat

EPSS Низкий

Описание

Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag to buglist.cgi.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-352

https://bugzilla.redhat.com/show_bug.cgi?id=484811bugzilla: CSRF vuln via buglist.cgi

EPSS

Процентиль: 61%

0.00413

Низкий

Связанные уязвимости

CVE-2009-0484

ubuntu

почти 17 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag to buglist.cgi.

CVE-2009-0484

nvd

почти 17 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag to buglist.cgi.

CVE-2009-0484

debian

почти 17 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before ...

GHSA-42xg-gwq6-6jjw

github

больше 3 лет назад

Cross-site request forgery (CSRF) vulnerability in Bugzilla 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete shared or saved searches via a link or IMG tag to buglist.cgi.

EPSS

Процентиль: 61%

0.00413

Низкий