Security Advisory

CVE-2004-1061

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2004-12-31 05:00:00

Last updated 2024-08-08 00:39:00

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Bugzilla before 2.18, including 2.16.x before 2.16.11, allows remote attackers to inject arbitrary HTML and web script via forced error messages, as demonstrated using the action parameter.

← Browse all CVEs View on cve.org ↗