Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privileges to delete other users by directly calling the editusers.cgi script with the "del" option.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2003-04-02T05:00:00
Updated: 2024-08-08T03:03:48.947Z
Reserved: 2002-07-29T00:00:00
Link: CVE-2002-0806
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-08-12T04:00:00.000
Modified: 2024-11-20T23:39:54.877
Link: CVE-2002-0806
Redhat