Lucene search
PRIOn knowledge basePRION:CVE-2013-1734HistoryOct 24, 2013 - 10:53 a.m.
Cross site request forgery (csrf)
2013-10-2410:53:00
PRIOn knowledge base
www.prio-n.com
8
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that commit an attachment change via an update action.
Related
cvelist
cvelist
CVE-2013-1734
2022-10-03 16:14:47
ubuntucve
ubuntucve
CVE-2013-1734
2013-10-24 00:00:00
nvd
nvd
CVE-2013-1734
2013-10-24 10:53:09
cve
cve
CVE-2013-1734
2022-10-03 16:14:47
nessus
nessus
Fedora 18 : bugzilla-4.2.7-1.fc18 (2013-19458)
2013-10-29 00:00:00
Fedora 20 : bugzilla-4.2.7-1.fc20 (2013-19402)
2013-11-11 00:00:00
Bugzilla < 4.0.11 / 4.2.7 / 4.4.1 Multiple Vulnerabilities
2013-10-31 00:00:00
openvas
openvas
Fedora Update for bugzilla FEDORA-2013-19480
2013-10-29 00:00:00
Fedora Update for bugzilla FEDORA-2013-19480
2013-10-29 00:00:00
Fedora Update for bugzilla FEDORA-2013-19458
2013-10-29 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: bugzilla-4.2.7-1.fc20
2013-11-10 07:27:24
[SECURITY] Fedora 19 Update: bugzilla-4.2.7-1.fc19
2013-10-29 03:47:45
[SECURITY] Fedora 18 Update: bugzilla-4.2.7-1.fc18
2013-10-29 03:46:48
securityvulns
securityvulns
[ MDVSA-2013:285 ] bugzilla
2013-12-09 00:00:00
Security Advisory for Bugzilla 4.4.1, 4.2.7 and 4.0.11
2013-10-27 00:00:00
freebsd
freebsd
bugzilla -- multiple vulnerabilities
2013-10-16 00:00:00
mageia
mageia
Updated bugzilla package fixes multiple vulnerabilities
2014-05-02 21:50:55