← back
CVE-2012-5884

CVE-2012-5884

EPSS 1.2%
The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 allows remote attackers to obtain sensitive information about the saved searches of arbitrary users via an XMLRPC request or a JSONRPC request, a different vulnerability than CVE-2012-4198.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugzilla.mozilla.org/show_bug.cgi?id=697224https://bugzilla.mozilla.org/show_bug.cgi?id=781850https://exchange.xforce.ibmcloud.com/vulnerabilities/80115