Lucene search
PRIOn knowledge basePRION:CVE-2012-4199HistoryNov 16, 2012 - 12:24 p.m.
Code injection
2012-11-1612:24:00
PRIOn knowledge base
www.prio-n.com
7
template/en/default/bug/field-events.js.tmpl in Bugzilla 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 generates JavaScript function calls containing private product names or private component names in certain circumstances involving custom-field visibility control, which allows remote attackers to obtain sensitive information by reading HTML source code.
Related
ubuntucve
ubuntucve
CVE-2012-4199
2012-11-16 00:00:00
nvd
nvd
CVE-2012-4199
2012-11-16 12:24:24
cve
cve
CVE-2012-4199
2012-11-16 12:24:24
cvelist
cvelist
CVE-2012-4199
2012-11-16 11:00:00
openvas
openvas
FreeBSD Ports: bugzilla
2012-11-26 00:00:00
FreeBSD Ports: bugzilla
2012-11-26 00:00:00
securityvulns
securityvulns
Security advisory for Bugzilla 4.4rc1, 4.2.4, 4.0.9 and 3.6.12
2012-11-18 00:00:00
nessus
nessus
Bugzilla < 3.6.12 / 4.0.9 / 4.2.4 / 4.4rc1 Multiple Vulnerabilities
2012-11-20 00:00:00
FreeBSD : bugzilla -- multiple vulnerabilities (2b841f88-2e8d-11e2-ad21-20cf30e32f6d)
2012-11-19 00:00:00
Mandriva Linux Security Advisory : bugzilla (MDVSA-2013:066)
2013-04-20 00:00:00
freebsd
freebsd
bugzilla -- multiple vulnerabilities
2012-11-13 00:00:00