Filter
AND

Mozilla BugzillaCSRF

medium
6.8
First published (updated )
CVE-2013-1734

Mozilla BugzillaBugzilla 2.x and 3.x through 3.6.11, 3.7.x and 4.0.x before 4.0.8, 4.1.x and 4.2.x before 4.2.3, and…

medium
5
First published (updated )
CVE-2012-4747

Mozilla BugzillaXSS

medium
4.3
First published (updated )
CVE-2002-2260

Mozilla Bugzillaeditproducts.cgi in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, when the "usebuggroups"…

high
7.5
First published (updated )
CVE-2002-1196

Mozilla Bugzillabugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote a…

high
7.5
First published (updated )
CVE-2002-1197

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2002-1198

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, (1) creates new directories with world-writabl…

medium
4.6
First published (updated )
CVE-2002-0805

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb c…

medium
5
First published (updated )
CVE-2002-0810

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, does not properly handle URL-encoded field nam…

high
7.5
First published (updated )
CVE-2002-0809

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2002-0811

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows remote attackers to display restricted …

medium
5
First published (updated )
CVE-2002-0803

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when configured to perform reverse DNS lookups…

high
7.5
First published (updated )
CVE-2002-0804

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groups…

high
7.5
First published (updated )
CVE-2002-0808

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privil…

low
2.1
First published (updated )
CVE-2002-0806

Mozilla BugzillaCross-site scripting vulnerabilities in Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, could …

high
7.5
First published (updated )
CVE-2002-0807

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla Bugzillashow_bug.cgi in Bugzilla before 2.14.1 allows a user with "Bugs Access" privileges to see other prod…

medium
5
First published (updated )
CVE-2002-0009

Mozilla BugzillaBugzilla before 2.14.1 allows remote attackers to inject arbitrary SQL code and create files or gain…

high
7.5
First published (updated )
CVE-2002-0010

Mozilla BugzillaCGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bi…

critical
10
First published (updated )
CVE-2002-0007

Mozilla BugzillaInformation leak in doeditvotes.cgi in Bugzilla before 2.14.1 may allow remote attackers to more eas…

medium
5
First published (updated )
CVE-2002-0011

Mozilla BugzillaBugzilla before 2.14.1 allows remote attackers to (1) spoof a user comment via an HTTP request to pr…

high
7.5
First published (updated )
CVE-2002-0008

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla Bugzillaeditproducts.cgi in Bugzilla 2.16.3 and earlier, when usebuggroups is enabled, does not properly rem…

high
7.5
First published (updated )
CVE-2003-1044

Mozilla Bugzillavotes.cgi in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote attackers to read…

medium
5
First published (updated )
CVE-2003-1045

Mozilla BugzillaSQL Injection

critical
10
First published (updated )
CVE-2003-1042

Mozilla BugzillaSQL Injection

critical
10
First published (updated )
CVE-2003-1043

Mozilla Bugzilladescribecomponents.cgi in Bugzilla 2.17.3 and 2.17.4 does not properly verify group membership when …

high
7.5
First published (updated )
CVE-2003-1046

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaBugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to over…

low
2.1
First published (updated )
CVE-2003-0603

Mozilla BugzillaThe default .htaccess scripts for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x be…

high
7.5
First published (updated )
CVE-2003-0013

Mozilla BugzillaThe data collection script for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x befor…

low
2.1
First published (updated )
CVE-2003-0012

Mozilla Bugzillashow_bug.cgi in Bugzilla 2.17.1 through 2.18rc2 and 2.19 from CVS, when using the insidergroup featu…

medium
5
First published (updated )
CVE-2004-1634

Mozilla BugzillaBugzilla 2.17.1 through 2.18rc2 and 2.19 from cvs, when using the insidergroup feature, does not suf…

medium
5
First published (updated )
CVE-2004-1635

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203