7.5
CVE-2005-1564
- EPSS 1.56%
- Veröffentlicht 12.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:17
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
post_bug.cgi in Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 allows remote authenticated users to "enter bugs into products that are closed for bug entry" by modifying the URL to specify the name of the product.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.56% | 0.72 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=111592031902962&w=2
http://secunia.com/advisories/15338
http://www.bugzilla.org/security/2.16.8/
http://www.osvdb.org/16426
https://bugzilla.mozilla.org/show_bug.cgi?id=287109
https://exchange.xforce.ibmcloud.com/vulnerabilities/42797