Mozilla Bugzilla Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Version

2.17.148
2.1438
2.14.136
2.1632
2.1028

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix108
Temporary Fix0
Workaround0
Unavailable0
Not Defined30

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High4
Functional0
Proof-of-Concept40
Unproven6
Not Defined88

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical0
Local12
Adjacent2
Network124

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High2
Low8
None128

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required44
None94

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤30
≤414
≤536
≤636
≤710
≤838
≤90
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤30
≤424
≤544
≤628
≤732
≤86
≤90
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤30
≤414
≤536
≤636
≤710
≤838
≤90
≤104

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k0
<2k0
<5k2
<10k48
<25k88
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k112
<2k4
<5k16
<10k6
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

🔴 CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Affected Versions (169): 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.14.1, 2.14.2, 2.14.3, 2.14.4, 2.14.5, 2.15, 2.16, 2.16.1, 2.16.2, 2.16.3, 2.16.4, 2.16.5, 2.16.6, 2.16.7, 2.16.8, 2.16.9, 2.16.11, 2.17, 2.17.1, 2.17.2, 2.17.3, 2.17.4, 2.17.5, 2.17.6, 2.17.7, 2.18, 2.18.1, 2.18.2, 2.18.3, 2.18.4, 2.18.5, 2.19, 2.19.1, 2.19.2, 2.19.3, 2.20, 2.20.1, 2.20.2, 2.20.3, 2.20.4, 2.21, 2.21.1, 2.21.2, 2.22, 2.22.1, 2.22.2, 2.22.3, 2.22.4, 2.23, 2.23.1, 2.23.2, 2.23.3, 2.23.4, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.3.4, 3.4, 3.4.1, 3.4.2, 3.4.3, 3.4.4, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.6, 3.6.1, 3.6.2, 3.6.3, 3.6.4, 3.6.5, 3.6.6, 3.6.7, 3.6.8, 3.6.9, 3.7, 3.7.1, 3.7.2, 3.7.3, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.0.11, 4.0.12, 4.0.13, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8, 4.2.9, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 4.4.5, 4.4.6, 4.4.7, 4.4.8, 4.4.9, 4.4rc1, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 5.0

Link to Product Website: https://www.mozilla.org/

Software Type: Bug Tracking Software

PublishedBaseTempVulnerability0dayTodayExpRemCTICVE
09/10/20157.36.4Mozilla Bugzilla Email Address Util.pm input validation$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2015-4499
02/01/20156.36.0Mozilla Bugzilla command injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-8630
10/06/20144.34.1Mozilla Bugzilla cross site scripting$5k-$25k$0-$5kHighOfficial Fix0.02CVE-2014-1573
10/06/20145.34.6Mozilla Bugzilla Account Creation access control$5k-$25k$0-$5kUnprovenOfficial Fix0.03CVE-2014-1572
10/06/20145.34.6Mozilla Bugzilla Comment information disclosure$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2014-1571
07/24/20144.34.1Mozilla Bugzilla JSONP Endpoint cross-site request forgery$5k-$25k$0-$5kHighOfficial Fix0.02CVE-2014-1546
04/18/20145.34.8Mozilla Bugzilla Data Display improper authentication$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2014-1517
10/17/20134.33.9Mozilla Bugzilla cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1743
10/17/20136.35.7Mozilla Bugzilla editflagtypes.cgi cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1742
10/17/20135.44.9Mozilla Bugzilla CSRF Token process_bug.cgi cross-site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1733
10/17/20135.44.9Mozilla Bugzilla CSRF Token attachment.cgi cross-site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1734
02/24/20134.34.1Mozilla Bugzilla Error Message build_subselect information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2013-0786
11/16/20124.34.3Mozilla Bugzilla swfstore.swf cross site scripting$5k-$25k$0-$5kNot DefinedNot Defined0.05CVE-2012-5883
09/04/20125.35.3Mozilla Bugzilla access control$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2012-4747
08/30/20126.55.9Mozilla Bugzilla Username Parser search credentials management$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-3981
08/30/20124.33.9Mozilla Bugzilla Extension Directory Browser credentials management$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-3981
07/26/20125.34.8Mozilla Bugzilla access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-1969
07/26/20125.34.8Mozilla Bugzilla access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-1968
04/13/20125.95.3Mozilla Bugzilla JavaScript Template buglist.cgi access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-0466
02/24/20126.36.3Mozilla Bugzilla mod_perl xmlrpc.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2012-0453
02/18/20127.56.7Mozilla Bugzilla X-Forwarded-For Header access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-0465
02/02/20124.34.1Mozilla Bugzilla User Account input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-0448
02/02/20126.36.0Mozilla Bugzilla jsonrpc.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-0440
01/02/20126.36.0Mozilla Bugzilla attachment.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2011-3669
01/02/20126.36.0Mozilla Bugzilla post_bug.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2011-3668

113 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 113 results.

more entries by Mozilla

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!