CVE-2011-3657 in Bugzillainfo

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Bugzilla 2.x and 3.x before 3.4.13, 3.5.x and 3.6.x before 3.6.7, 3.7.x and 4.0.x before 4.0.3, and 4.1.x through 4.1.3, when debug mode is used, allow remote attackers to inject arbitrary web script or HTML via vectors involving a (1) tabular report, (2) graphical report, or (3) new chart.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

ID	Vulnerability	CWE	Exp	Cou	CVE
59864	Mozilla Bugzilla Debug Mode cross site scripting	79	Not defined	Not defined	CVE-2011-3657

Reservation

09/23/2011

Disclosure

01/02/2012

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-3657
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-3657
CVE Details	https://www.cvedetails.com/cve/CVE-2011-3657/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!