Family: CGI abuses : XSS --> Category: infos
Bugzilla Internal Error Cross Site Scripting Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Searches for the existence of bugzilla
Detailed Explanation for this Vulnerability Test
The remote web server contains a CGI which is vulnerable to a cross site
The remote host runs bugzilla, a web-based bug tracking system.
The remote Bugzilla installation, according to its version number
is vulnerable to a cross site scripting attack when rendering internal
errors containing user-supplied input.
Upgrade to Bugzilla 2.18.0 or newer
Low / CVSS Base Score : 3
Click HERE for more information and discussions on this network vulnerability scan.