Skip to main content

CVE-2002-0806

Severity Low
Score 2.1/10

Summary

Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privileges to delete other users by directly calling the editusers.cgi script with the "del" option.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • NONE

References

Advisory Timeline

  • Published