Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a midair-collision token.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mozilla

Published: 2013-10-24T10:00:00Z

Updated: 2024-09-16T20:57:27.040Z

Reserved: 2013-02-13T00:00:00Z

Link: CVE-2013-1733

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-10-24T10:53:07.537

Modified: 2024-11-21T01:50:16.903

Link: CVE-2013-1733

cve-icon Redhat

No data.