Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a midair-collision token.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mozilla
Published: 2013-10-24T10:00:00Z
Updated: 2024-09-16T20:57:27.040Z
Reserved: 2013-02-13T00:00:00Z
Link: CVE-2013-1733
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-10-24T10:53:07.537
Modified: 2024-11-21T01:50:16.903
Link: CVE-2013-1733
Redhat
No data.