Show filters
53 Total Results
Displaying 51-53 of 53
Sort by:
Attacker Value
Unknown

CVE-2004-0706

Disclosure Date: July 27, 2004 (last updated February 22, 2025)
Bugzilla 2.17.5 through 2.17.7 embeds the password in an image URL, which could allow local users to view the password in the web server log files.
0
0
Attacker Value
Unknown

CVE-2004-0702

Disclosure Date: July 27, 2004 (last updated February 22, 2025)
DBI in Bugzilla 2.17.1 through 2.17.7 displays the database password in an error message when the SQL server is not running, which could allow remote attackers to gain sensitive information.
0
0
Attacker Value
Unknown

CVE-2002-2260

Disclosure Date: December 31, 2002 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in the quips feature in Mozilla Bugzilla 2.10 through 2.17 allows remote attackers to inject arbitrary web script or HTML via the "show all quips" page.
0
0
View More Topics  < Previous