Arbitrary SQL Execution Vulnerability in Bugzilla 2.16.3 and Earlier, and 2.17.1 through 2.17.4

Arbitrary SQL Execution Vulnerability in Bugzilla 2.16.3 and Earlier, and 2.17.1 through 2.17.4

CVE-2003-1043 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.

Learn more about our User Device Pen Test.