NVD

Id
47817  
Name
CVE-2009-0485  
Description
Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.  
Reject
 
CVSS Version
2  
CVSS Score
5.8  
Severity
Medium  
CVSS Base Score
5.8  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-02-09  
Modified Date
2009-03-25  
Seq
2009-0485  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
239535 47817 CVE-2009-0485 http://www.bugzilla.org/security/2.22.6/  View
239536 47817 CVE-2009-0485 33580  View
239537 47817 CVE-2009-0485 https://bugzilla.mozilla.org/show_bug.cgi?id=466692  View
239538 47817 CVE-2009-0485 FEDORA-2009-2418  View
239539 47817 CVE-2009-0485 FEDORA-2009-2417  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
40419 JVNDB-2009-001425 Bugzilla におけるクロスサイトリクエストフォージェリの脆弱性 Bugzilla には、クロスサイトリクエストフォージェリの脆弱性が存在します。 CVE-2009-0485 37916 CVE-2009-0485 47817 5.8 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001425.html 2009-02-09 2009-06-30 View