CVE-2002-0806
Summary
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privileges to delete other users by directly calling the editusers.cgi script with the "del" option.
- LOW
- LOCAL
- NONE
- PARTIAL
- NONE
- NONE
References
Advisory Timeline
- Published