Arbitrary SQL Execution Vulnerability in Bugzilla 2.16.3 and Earlier, and 2.17.1 through 2.17.4
CVE-2003-1043 · HIGH Severity
AV:N/AC:L/AU:N/C:C/I:C/A:C
SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.
Learn more about our User Device Pen Test.