AI Score
Confidence
Low
EPSS
Percentile
51.1%
SQL injection vulnerability in the Bug.create WebService function in Bugzilla 2.23.4 through 3.0.8, 3.1.1 through 3.2.4, and 3.3.1 through 3.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.
secunia.com/advisories/36718
www.bugzilla.org/security/3.0.8/
www.securityfocus.com/bid/36373
bugzilla.mozilla.org/show_bug.cgi?id=515191