Unrestricted Access to Restricted Products and Components in Bugzilla

Unrestricted Access to Restricted Products and Components in Bugzilla

CVE-2002-0803 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows remote attackers to display restricted products and components via a direct HTTP request to queryhelp.cgi.

Learn more about our Web Application Penetration Testing UK.