Lucene search
MitreCVELIST:CVE-2012-4747HistorySep 04, 2012 - 10:00 a.m.
CVE-2012-4747
2012-09-0410:00:00
mitre
www.cve.org
6
bugzilla
sensitive information
access control
remote attackers
web root
template files
custom extension files
documentation files
Bugzilla 2.x and 3.x through 3.6.11, 3.7.x and 4.0.x before 4.0.8, 4.1.x and 4.2.x before 4.2.3, and 4.3.x before 4.3.3 stores potentially sensitive information under the web root with insufficient access control, which allows remote attackers to read (1) template (aka .tmpl) files, (2) other custom extension files under extensions/, or (3) custom documentation files under docs/ via a direct request.
Related
prion
prion
Improper access control
2012-09-04 11:04:00
seebug
seebug
Mozilla Bugzilla信息泄露漏洞
2012-09-09 00:00:00
ubuntucve
ubuntucve
CVE-2012-4747
2012-09-04 00:00:00
cve
cve
CVE-2012-4747
2012-09-04 11:04:50
nvd
nvd
CVE-2012-4747
2012-09-04 11:04:50
nessus
nessus
Bugzilla < 3.6.11 / 4.0.8 / 4.2.3 / 4.3.3 Multiple Vulnerabilities
2012-09-13 00:00:00
openvas
openvas
Bugzilla LDAP Code Injection And Security Bypass Vulnerabilities
2012-09-11 00:00:00