CVE-2003-1043: SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to…

critical10CVSS 3.1

AVNACLAuNCCICAC

SQL injection vulnerability in Bugzilla 2.16.3 and earlier, and 2.17.1 through 2.17.4, allows remote authenticated users with editkeywords privileges to execute arbitrary SQL via the id parameter to editkeywords.cgi.

Affected

18 ranges

Vendor	Product	Version range	Fixed in
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—
mozilla	bugzilla	—	—