|
Family: CGI abuses : XSS --> Category: infos
Bugzilla Internal Error Cross Site Scripting Vulnerability Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of bugzilla
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a CGI which is vulnerable to a cross site
scripting vulnerability.
Description :
The remote host runs bugzilla, a web-based bug tracking system.
The remote Bugzilla installation, according to its version number
is vulnerable to a cross site scripting attack when rendering internal
errors containing user-supplied input.
Solution :
Upgrade to Bugzilla 2.18.0 or newer
Threat Level:
Low / CVSS Base Score : 3
(AV:R/AC:H/Au:NR/C:P/A:N/I:N/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|