Product Mozilla Bugzilla

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Version

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Remediation

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Exploitability

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Access Vector

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Authentication

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

User Interaction

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

CVSSv3 Base

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

CVSSv3 Temp

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

VulDB

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

NVD

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Research

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Exploit 0-day

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Exploit Today

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Affected Versions (169): 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.14.1, 2.14.2, 2.14.3, 2.14.4, 2.14.5, 2.15, 2.16, 2.16.1, 2.16.2, 2.16.3, 2.16.4, 2.16.5, 2.16.6, 2.16.7, 2.16.8, 2.16.9, 2.16.11, 2.17, 2.17.1, 2.17.2, 2.17.3, 2.17.4, 2.17.5, 2.17.6, 2.17.7, 2.18, 2.18.1, 2.18.2, 2.18.3, 2.18.4, 2.18.5, 2.19, 2.19.1, 2.19.2, 2.19.3, 2.20, 2.20.1, 2.20.2, 2.20.3, 2.20.4, 2.21, 2.21.1, 2.21.2, 2.22, 2.22.1, 2.22.2, 2.22.3, 2.22.4, 2.23, 2.23.1, 2.23.2, 2.23.3, 2.23.4, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.3.4, 3.4, 3.4.1, 3.4.2, 3.4.3, 3.4.4, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.6, 3.6.1, 3.6.2, 3.6.3, 3.6.4, 3.6.5, 3.6.6, 3.6.7, 3.6.8, 3.6.9, 3.7, 3.7.1, 3.7.2, 3.7.3, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.0.11, 4.0.12, 4.0.13, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8, 4.2.9, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 4.4.5, 4.4.6, 4.4.7, 4.4.8, 4.4.9, 4.4rc1, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 5.0

Link to Product Website: https://www.mozilla.org/

Software Type: Bug Tracking Software

PublishedBaseTempVulnerability0dayTodayExpRemCTICVE
09/10/20157.36.4Mozilla Bugzilla Email Address Util.pm input validation$25k-$100k$0-$5kUnprovenOfficial Fix0.01CVE-2015-4499
02/01/20156.36.0Mozilla Bugzilla command injection$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-8630
10/06/20144.34.1Mozilla Bugzilla cross site scripting$5k-$25k$0-$5kHighOfficial Fix0.05CVE-2014-1573
10/06/20145.34.6Mozilla Bugzilla Account Creation access control$25k-$100k$0-$5kUnprovenOfficial Fix0.05CVE-2014-1572
10/06/20145.34.6Mozilla Bugzilla Comment information disclosure$25k-$100k$0-$5kUnprovenOfficial Fix0.02CVE-2014-1571
07/24/20144.34.1Mozilla Bugzilla JSONP Endpoint cross-site request forgery$5k-$25k$0-$5kHighOfficial Fix0.02CVE-2014-1546
04/18/20145.34.8Mozilla Bugzilla Data Display improper authentication$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2014-1517
10/17/20134.33.9Mozilla Bugzilla cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1743
10/17/20136.35.7Mozilla Bugzilla editflagtypes.cgi cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.07CVE-2013-1742
10/17/20135.44.9Mozilla Bugzilla CSRF Token process_bug.cgi cross-site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1733
10/17/20135.44.9Mozilla Bugzilla CSRF Token attachment.cgi cross-site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.01CVE-2013-1734
02/24/20134.34.1Mozilla Bugzilla Error Message build_subselect information disclosure$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2013-0786
11/16/20124.34.3Mozilla Bugzilla swfstore.swf cross site scripting$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2012-5883
09/04/20125.35.3Mozilla Bugzilla access control$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2012-4747
08/30/20126.55.9Mozilla Bugzilla Username Parser search credentials management$5k-$25k$0-$5kProof-of-ConceptOfficial Fix1.22CVE-2012-3981
08/30/20124.33.9Mozilla Bugzilla Extension Directory Browser credentials management$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-3981
07/26/20125.34.8Mozilla Bugzilla access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2012-1969
07/26/20125.34.8Mozilla Bugzilla access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2012-1968
04/13/20125.95.3Mozilla Bugzilla JavaScript Template buglist.cgi access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-0466
02/24/20126.36.3Mozilla Bugzilla mod_perl xmlrpc.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2012-0453
02/18/20127.56.7Mozilla Bugzilla X-Forwarded-For Header access control$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-0465
02/02/20124.34.1Mozilla Bugzilla User Account input validation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-0448
02/02/20126.36.0Mozilla Bugzilla jsonrpc.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.01CVE-2012-0440
01/02/20126.36.0Mozilla Bugzilla attachment.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2011-3669
01/02/20126.36.0Mozilla Bugzilla post_bug.cgi cross-site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2011-3668

🔒 Login Required

You need to signup and login to see more of the remaining 113 results.

more entries by Mozilla

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!