CVSS Base Vector:
Bugzilla is prone to multiple vulnerabilities.
Checks if a vulnerable version is present on the target host.
Bugzilla is prone to multiple vulnerabilities:
Cross-site scripting vulnerability in showdependencygraph.cgi when a local dot configuration is used, allows
remote attackers to inject arbitrary web script or HTML via a crafted bug summary. (CVE-2015-8508)
Template.pm does not properly construct CSV files, which allows remote attackers to obtain sensitive
An attacker may obtain sensitive information or inject arbitrary web
script or HTML.
Bugzilla 2.x, 3.x, and 4.x before 4.2.16, 4.3.x and 4.4.x before 4.4.11,
and 4.5.x and 5.0.x before 5.0.2
NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)
Upgrade to Version 4.2.16, 4.4.11, 5.0.2 or later.