Mozilla Bugzilla 2.23.3

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summuary
CPE Name	cpe:/a:mozilla:bugzilla:2.23.3

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.

	Date	Alert	Access Vector	Access Complexity	Authentification
5	2013-02-24	CVE-2013-0786	Network	Low	None Requ...
5	2012-11-16	CVE-2012-4197	Network	Low	None Requ...
5	2012-09-04	CVE-2012-4747	Network	Low	None Requ...
5	2012-09-04	CVE-2012-3981	Network	Low	None Requ...
4.3	2012-07-30	CVE-2012-1969	Network	Medium	None Requ...
Hide \| Show 20 More...

	Date	Alert	Access Vector	Access Complexity	Authentification
4	2012-04-27	CVE-2012-0466	Network	High	None Requ...
4	2012-02-02	CVE-2012-0448	Network	Low	Requires ...
6.8	2012-01-02	CVE-2011-3669	Network	Medium	None Requ...
6.8	2012-01-02	CVE-2011-3668	Network	Medium	None Requ...
6.8	2012-01-02	CVE-2011-3667	Network	Medium	None Requ...
4.3	2012-01-02	CVE-2011-3657	Network	Medium	None Requ...
5	2011-08-09	CVE-2011-2380	Network	Low	None Requ...
4.3	2011-01-28	CVE-2011-0048	Network	Medium	None Requ...
6.8	2011-01-28	CVE-2011-0046	Network	Medium	None Requ...
4.3	2011-01-28	CVE-2010-4572	Network	Medium	None Requ...
4.3	2011-01-28	CVE-2010-4567	Network	Medium	None Requ...
5	2010-11-05	CVE-2010-3764	Network	Low	None Requ...
2.6	2010-11-05	CVE-2010-3172	Network	High	None Requ...
4	2010-08-16	CVE-2010-2759	Network	Low	Requires ...
5	2010-08-16	CVE-2010-2758	Network	Low	None Requ...
6.5	2010-08-16	CVE-2010-2757	Network	Low	Requires ...
5	2010-08-16	CVE-2010-2756	Network	Low	None Requ...
4	2009-02-09	CVE-2008-6098	Network	Low	Requires ...
7.1	2008-10-03	CVE-2008-4437	Network	Medium	None Requ...

%	id	Name
25% (7)	CWE-264	Permissions, Privileges, and Access Controls
18% (5)	CWE-200	Information Exposure
14% (4)	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (3)	CWE-352	Cross-Site Request Forgery (CSRF)
7% (2)	CWE-94	Failure to Control Generation of Code ('Code Injection')
Hide \| Show 6 More...

%	id	Name
3% (1)	CWE-310	Cryptographic Issues
3% (1)	CWE-287	Improper Authentication
3% (1)	CWE-255	Credentials Management
3% (1)	CWE-189	Numeric Errors
3% (1)	CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path ...
3% (1)	CWE-20	Improper Input Validation

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.

id	Description
78062	Bugzilla User.offer_account_by_email Method user_can_create_account Value Par...
78061	Bugzilla report.cgi Real Name Field XSS
78060	Bugzilla chart.cgi label0 Parameter XSS
78059	Bugzilla attachment.cgi Attachment Addition CSRF
78058	Bugzilla post_bug.cgi Bug Report Creation CSRF
Hide \| Show 20 More...

id	Description
74299	Bugzilla Custom Search URL Parsing Group Name Disclosure
74298	Bugzilla Bug Creation / Editing URL Parsing Group Name Disclosure
70710	Bugzilla quips.cgi Quip Moderation CSRF
70709	Bugzilla colchange.cgi Column Manipulation CSRF
70708	Bugzilla chart.cgi Chart Manipulation CSRF
70707	Bugzilla sanitycheck.cgi Authentication Hijack CSRF
70706	Bugzilla votes.cgi Authentication Hijack CSRF
70705	Bugzilla buglist.cgi Saved Search Addition CSRF
70704	Bugzilla Multiple URI Clickable Link bug_file_loc Field XSS
70703	Bugzilla chart.cgi Query String HTTP Response Splitting CRLF Injection
70699	Bugzilla Multiple URI Preceding Whitespace bug_file_loc Field XSS
69222	Bugzilla Old Charts Predictable Graph Filenames Remote Information Disclosure
69221	Bugzilla Server Push Crafted URL Response Splitting CRLF Injection
67199	Bugzilla with PostgreSQL Multiple Phrase Crafted Comment Remote DoS
67198	Bugzilla Multiple Page Error Message Remote Product Name Enumeration
67197	Bugzilla sudo Feature Impersonation Notification Weakness
67196	Bugzilla Search.pm Multiple Vector Arbitrary Group Membership Enumeration
49731	Bugzilla quips.cgi Unspecified Crafted Variable Security Bypass
47547	Bugzilla importxml.pl filename Parameter Traversal Arbitrary File Access
44941	Bugzilla Multiple Style Bug List Display id Parameter XSS

Mapping	Total
CVE ID(s)	29
osvdb(s)	29