NuytsTech Security

CVE-2006-5455

by ·

Cross-site request forgery (CSRF) vulnerability in editversions.cgi in Bugzilla before 2.22.1 and 2.23.x before 2.23.3 allows user-assisted remote attackers to create, modify, or delete arbitrary bug reports via a crafted URL.

Date published : 2006-10-23

http://www.securityfocus.com/bid/20538

http://www.securityfocus.com/archive/1/448777/100/100/threaded

Tags: