Filter
AND
AND

Versions

2.14
22
2.14.1
19
2.16
17
2.10
14
2.8
14
2.4
13
2.6
13
2.12
12
2.14.2
12
2.14.3
12
2.14.4
10
2.16.1
9
2.14.5
8
2.16.2
8
2.16.3
8
2.17.1
8
2.16-rc1
7
2.17.3
7
2.17.4
7
2.16.4
6
2.16.5
6
2.17
6
2.17.5
5
2.17.6
5
2.17.7
5
3.1.1
5
2.16.10
4
3.0.1
4
3.0.2
4
3.0.7
4
3.1.2
4
3.1.3
4
3.1.4
4
3.2.1
4
3.3.2
4
3.4
4
3.4.1
4
2.16.6
3
2.16.7
3
2.16.8
3
2.16.9
3
2.18-rc1
3
2.18-rc2
3
2.19.1
3
2.19.2
3
2.19.3
3
2.20
3
2.20-rc1
3
2.20-rc2
3
2.21
3
2.21.1
3
2.22.1
3
2.22.2
3
2.22.3
3
2.22.4
3
2.23.3
3
2.23.4
3
3.0
3
3.0-rc1
3
3.0.0
3
3.0.3
3
3.0.4
3
3.0.5
3
3.0.6
3
3.0.8
3
3.1.0
3
3.2
3
3.2-rc1
3
3.2-rc2
3
3.2.2
3
3.2.3
3
3.2.4
3
3.3.3
3
3.3.4
3
3.4-rc1
3
2.16-rc2
2
2.16.11
2
2.18
2
2.18-rc3
2
2.18.1
2
2.18.2
2
2.18.3
2
2.18.4
2
2.18.5
2
2.18.6
2
2.19
2
2.20.1
2
2.20.2
2
2.20.3
2
2.20.4
2
2.20.5
2
2.20.6
2
2.20.7
2
2.21.2
2
2.22
2
2.22-rc1
2
2.22.5
2
2.22.6
2
2.23
2
2.23.1
2
2.23.2
2
2.9
2
3.0.10
2
3.0.11
2
3.0.9
2
3.2.5
2
3.2.6
2
3.2.7
2
3.2.8
2
3.2.9
2
3.3.1
2
3.4.2
2
3.4.3
2
3.4.4
2
3.4.5
2
3.4.6
2
3.4.7
2
3.4.8
2
3.4.9
2
3.5
2
3.6
2
3.6-rc1
2
3.6.0
2
3.6.1
2
3.6.2
2
3.6.3
2
4.0
2
4.0-rc1
2
2.0
1
2.17.2
1
2.18.6\+
1
2.2
1
2.22.7
1
3.2.10
1
3.3
1
3.4.10
1
3.4.11
1
3.4.12
1
3.4.13
1
3.5.1
1
3.5.2
1
3.5.3
1
3.6.10
1
3.6.11
1
3.6.12
1
3.6.13
1
3.6.4
1
3.6.5
1
3.6.6
1
3.6.7
1
3.6.8
1
3.6.9
1
3.7
1
3.7.1
1
3.7.2
1
3.7.3
1
4.0-rc2
1
4.0.1
1
4.0.10
1
4.0.11
1
4.0.12
1
4.0.13
1
4.0.16
1
4.0.2
1
4.0.3
1
4.0.4
1
4.0.5
1
4.0.6
1
4.0.7
1
4.0.8
1
4.0.9
1
4.1
1
4.1.1
1
4.1.2
1
4.1.3
1
4.2
1
4.2-rc1
1
4.2-rc2
1
4.2.1
1
4.2.11
1
4.2.12
1
4.2.13
1
4.2.14
1
4.2.2
1
4.2.3
1
4.2.4
1
4.2.5
1
4.2.6
1
4.2.7
1
4.2.8
1
4.2.9
1
4.3
1
4.3.1
1
4.3.2
1
4.3.3
1
4.4
1
4.4-rc1
1
4.4-rc2
1
4.4.1
1
4.4.2
1
4.4.3
1
4.4.4
1
4.4.5
1
4.4.6
1
4.4.7
1
4.4.8
1
4.4.9
1
5.0
1

Mozilla BugzillaCSRF

high
8.8
First published (updated )
CVE-2018-5123

Mozilla BugzillaInput Validation

high
7.5
First published (updated )
CVE-2015-4499

Mozilla BugzillaBugzilla 2.14 through 2.22.7; 3.0.x, 3.1.x, and 3.2.x before 3.2.10; 3.4.x before 3.4.10; 3.6.x befo…

high
7.5
First published (updated )
CVE-2010-4568

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2009-3165

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2009-3125

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaCSRF

high
7.5
First published (updated )
CVE-2009-0486

Mozilla BugzillaPath Traversal

high
7.1
First published (updated )
CVE-2008-4437

Mozilla BugzillaThe offer_account_by_email function in User.pm in the WebService for Bugzilla before 3.0.2, and 3.1.…

high
7.5
First published (updated )
CVE-2007-5038

Mozilla BugzillaThe mod_perl initialization script in Bugzilla 2.23.3 does not set the Bugzilla Apache configuration…

high
7.5
First published (updated )
CVE-2007-0792

Mozilla BugzillaBugzilla 2.16.10 does not properly handle certain characters in the (1) maxpatchsize and (2) maxatta…

high
7.5
First published (updated )
CVE-2006-0915

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaBugzilla 2.19.3 through 2.20 does not properly handle "//" sequences in URLs when redirecting a user…

high
7.5
First published (updated )
CVE-2006-0916

Mozilla BugzillaThe shadow database feature (syncshadowdb) in Bugzilla 2.9 through 2.16.10 allows local users to ove…

high
7.5
First published (updated )
CVE-2005-4534

Mozilla Bugzillapost_bug.cgi in Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 allows remote authenticated users to …

high
7.5
First published (updated )
CVE-2005-1564

Mozilla BugzillaUnknown vulnerability in the administrative controls in Bugzilla 2.17.1 through 2.17.7 allows users …

high
7.5
First published (updated )
CVE-2004-0703

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2004-0707

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla Bugzillaeditproducts.cgi in Bugzilla 2.16.3 and earlier, when usebuggroups is enabled, does not properly rem…

high
7.5
First published (updated )
CVE-2003-1044

Mozilla Bugzilladescribecomponents.cgi in Bugzilla 2.17.3 and 2.17.4 does not properly verify group membership when …

high
7.5
First published (updated )
CVE-2003-1046

Mozilla BugzillaThe default .htaccess scripts for Bugzilla 2.14.x before 2.14.5, 2.16.x before 2.16.2, and 2.17.x be…

high
7.5
First published (updated )
CVE-2003-0013

Mozilla Bugzillaeditproducts.cgi in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, when the "usebuggroups"…

high
7.5
First published (updated )
CVE-2002-1196

Mozilla Bugzillabugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote a…

high
7.5
First published (updated )
CVE-2002-1197

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2002-1198

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when performing a mass change, sets the groups…

high
7.5
First published (updated )
CVE-2002-0808

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, does not properly handle URL-encoded field nam…

high
7.5
First published (updated )
CVE-2002-0809

Mozilla BugzillaBugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, when configured to perform reverse DNS lookups…

high
7.5
First published (updated )
CVE-2002-0804

Mozilla BugzillaSQL Injection

high
7.5
First published (updated )
CVE-2002-0811

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mozilla BugzillaCross-site scripting vulnerabilities in Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, could …

high
7.5
First published (updated )
CVE-2002-0807

Mozilla BugzillaBugzilla before 2.14.1 allows remote attackers to (1) spoof a user comment via an HTTP request to pr…

high
7.5
First published (updated )
CVE-2002-0008

Mozilla BugzillaBugzilla before 2.14.1 allows remote attackers to inject arbitrary SQL code and create files or gain…

high
7.5
First published (updated )
CVE-2002-0010

Mozilla BugzillaBugzilla before 2.14 stores user passwords in plaintext and sends password requests in an email mess…

high
7.5
First published (updated )
CVE-2001-1404

Mozilla BugzillaBugzilla before 2.14 allows Bugzilla users to bypass group security checks by marking a bug as the d…

high
7.5
First published (updated )
CVE-2001-1407

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203