CVE-2003-1043

SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.

Date published : 2004-06-03

http://www.securityfocus.com/bid/8953

http://www.securityfocus.com/archive/1/343185