This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:mozilla:bugzilla:2.16_rc2
Detail
VendorMozillaFirst view 2008-05-07
ProductBugzillaLast view 2012-01-02
Version2.16_rc2TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:mozilla:bugzilla

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6.8 2012-01-02 CVE-2011-3669 Network Medium None Requ...
6.8 2012-01-02 CVE-2011-3668 Network Medium None Requ...
4.3 2011-01-28 CVE-2011-0048 Network Medium None Requ...
6.8 2011-01-28 CVE-2011-0046 Network Medium None Requ...
4.3 2011-01-28 CVE-2010-4572 Network Medium None Requ...
Hide | Show 7 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.3 2011-01-28 CVE-2010-4567 Network Medium None Requ...
5 2010-11-05 CVE-2010-3764 Network Low None Requ...
2.6 2010-11-05 CVE-2010-3172 Network High None Requ...
5.8 2009-02-09 CVE-2009-0483 Network Medium None Requ...
5.8 2009-02-09 CVE-2009-0482 Network Medium None Requ...
3.5 2009-02-09 CVE-2009-0481 Network Medium Requires ...
3.5 2008-05-07 CVE-2008-2105 Network Medium Requires ...

CWE : Common Weakness Enumeration

%idName
41% (5)CWE-352Cross-Site Request Forgery (CSRF)
25% (3)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
16% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
8% (1)CWE-264Permissions, Privileges, and Access Controls
8% (1)CWE-200Information Exposure

Open Source Vulnerability Database (OSVDB)

idDescription
78059Bugzilla attachment.cgi Attachment Addition CSRF
78058Bugzilla post_bug.cgi Bug Report Creation CSRF
70710Bugzilla quips.cgi Quip Moderation CSRF
70709Bugzilla colchange.cgi Column Manipulation CSRF
70708Bugzilla chart.cgi Chart Manipulation CSRF
Hide | Show 13 More...
idDescription
70707Bugzilla sanitycheck.cgi Authentication Hijack CSRF
70706Bugzilla votes.cgi Authentication Hijack CSRF
70705Bugzilla buglist.cgi Saved Search Addition CSRF
70704Bugzilla Multiple URI Clickable Link bug_file_loc Field XSS
70703Bugzilla chart.cgi Query String HTTP Response Splitting CRLF Injection
70699Bugzilla Multiple URI Preceding Whitespace bug_file_loc Field XSS
69222Bugzilla Old Charts Predictable Graph Filenames Remote Information Disclosure
69221Bugzilla Server Push Crafted URL Response Splitting CRLF Injection
54054Bugzilla userprefs.cgi Keywords / User Preference Deletion CSRF
54053Bugzilla editkeywords.cgi Keywords / User Preference Deletion CSRF
54052Bugzilla process_bug.cgi Bug Update Activity CSRF
54051Bugzilla Uploaded Attachment Handling XSS
44939Bugzilla email_in.pl @reporter Command E-mail Address Spoofing Weakness

OpenVAS Exploits

idDescription
2012-04-02Name : Fedora Update for bugzilla FEDORA-2012-0301
File : nvt/gb_fedora_2012_0301_bugzilla_fc16.nasl
2012-02-12Name : Gentoo Security Advisory GLSA 201110-03 (bugzilla)
File : nvt/glsa_201110_03.nasl
2012-01-20Name : Fedora Update for bugzilla FEDORA-2012-0328
File : nvt/gb_fedora_2012_0328_bugzilla_fc15.nasl
2011-10-16Name : Debian Security Advisory DSA 2322-1 (bugzilla)
File : nvt/deb_2322_1.nasl
2011-03-09Name : Gentoo Security Advisory GLSA 201006-19 (bugzilla)
File : nvt/glsa_201006_19.nasl
Hide | Show 15 More...
idDescription
2011-03-05Name : FreeBSD Ports: bugzilla
File : nvt/freebsd_bugzilla12.nasl
2011-02-04Name : Fedora Update for bugzilla FEDORA-2011-0741
File : nvt/gb_fedora_2011_0741_bugzilla_fc14.nasl
2011-01-26Name : Bugzilla Multiple Vulnerabilities
File : nvt/gb_bugzilla_45982.nasl
2010-12-28Name : Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)
File : nvt/gb_mandriva_MDVSA_2010_252.nasl
2010-12-23Name : Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)
File : nvt/gb_mandriva_MDVSA_2010_250.nasl
2010-12-02Name : Fedora Update for bugzilla FEDORA-2010-17274
File : nvt/gb_fedora_2010_17274_bugzilla_fc14.nasl
2010-11-16Name : Fedora Update for bugzilla FEDORA-2010-17235
File : nvt/gb_fedora_2010_17235_bugzilla_fc12.nasl
2010-11-16Name : Fedora Update for bugzilla FEDORA-2010-17280
File : nvt/gb_fedora_2010_17280_bugzilla_fc13.nasl
2010-11-05Name : Bugzilla Response Splitting and Security Bypass Vulnerabilities
File : nvt/gb_bugzilla_44618.nasl
2009-03-20Name : Fedora Core 10 FEDORA-2009-2417 (bugzilla)
File : nvt/fcore_2009_2417.nasl
2009-03-20Name : Fedora Core 9 FEDORA-2009-2418 (bugzilla)
File : nvt/fcore_2009_2418.nasl
2009-02-17Name : Fedora Update for bugzilla FEDORA-2008-3442
File : nvt/gb_fedora_2008_3442_bugzilla_fc8.nasl
2009-02-17Name : Fedora Update for bugzilla FEDORA-2008-3488
File : nvt/gb_fedora_2008_3488_bugzilla_fc7.nasl
2009-02-17Name : Fedora Update for bugzilla FEDORA-2008-3668
File : nvt/gb_fedora_2008_3668_bugzilla_fc9.nasl
0000-00-00Name : FreeBSD Ports: bugzilla
File : nvt/freebsd_bugzilla14.nasl

Nessus® Vulnerability Scanner

idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_perl-CGI-Simple-110107.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_perl-110112.nasl - Type : ACT_GATHER_INFO
2012-01-19Name : The remote Fedora host is missing a security update.
File : fedora_2012-0301.nasl - Type : ACT_GATHER_INFO
2012-01-19Name : The remote Fedora host is missing a security update.
File : fedora_2012-0328.nasl - Type : ACT_GATHER_INFO
2012-01-06Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_0c7a3ee2365411e1b40420cf30e32f6d.nasl - Type : ACT_GATHER_INFO
Hide | Show 19 More...
idDescription
2011-10-11Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-03.nasl - Type : ACT_GATHER_INFO
2011-10-11Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2322.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_perl-110112.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_perl-CGI-Simple-110107.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-0741.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote Fedora host is missing a security update.
File : fedora_2011-0755.nasl - Type : ACT_GATHER_INFO
2011-01-26Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_c8c927e5289111e08f2600151735203a.nasl - Type : ACT_GATHER_INFO
2011-01-21Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_perl-110112.nasl - Type : ACT_GATHER_INFO
2010-11-16Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-237.nasl - Type : ACT_GATHER_INFO
2010-11-15Name : The remote Fedora host is missing a security update.
File : fedora_2010-17235.nasl - Type : ACT_GATHER_INFO
2010-11-15Name : The remote Fedora host is missing a security update.
File : fedora_2010-17274.nasl - Type : ACT_GATHER_INFO
2010-11-15Name : The remote Fedora host is missing a security update.
File : fedora_2010-17280.nasl - Type : ACT_GATHER_INFO
2010-11-15Name : A web application is affected by a response splitting vulnerability.
File : bugzilla_response_splitting.nasl - Type : ACT_GATHER_INFO
2010-06-04Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201006-19.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote Fedora host is missing a security update.
File : fedora_2009-2417.nasl - Type : ACT_GATHER_INFO
2009-03-19Name : The remote Fedora host is missing a security update.
File : fedora_2009-2418.nasl - Type : ACT_GATHER_INFO
2008-05-16Name : The remote Fedora host is missing a security update.
File : fedora_2008-3668.nasl - Type : ACT_GATHER_INFO
2008-05-11Name : The remote Fedora host is missing a security update.
File : fedora_2008-3442.nasl - Type : ACT_GATHER_INFO
2008-05-11Name : The remote Fedora host is missing a security update.
File : fedora_2008-3488.nasl - Type : ACT_GATHER_INFO