Vulnerabilities

CVE-2010-4569

by Fred · 28/01/2011

Cross-site scripting (XSS) vulnerability in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote attackers to inject arbitrary web script or HTML via the real name field of a user account, related to the AutoComplete widget in YUI.

Date published : 2011-01-28

http://www.securityfocus.com/bid/45982

http://www.bugzilla.org/security/3.2.9/

Related

Tags: Cybersecurity Alert