CVE-2003-1042

CVE-2003-1042

EPSS 2.6%

SQL injection vulnerability in collectstats.pl for Bugzilla 2.16.3 and earlier allows remote authenticated users with editproducts privileges to execute arbitrary SQL via the product name.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://bugzilla.mozilla.org/show_bug.cgi?id=214290 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000774 https://exchange.xforce.ibmcloud.com/vulnerabilities/13594 http://www.securityfocus.com/archive/1/343185 http://www.securityfocus.com/bid/8953