CVE-2006-5455

Low

2.6/10

Summary

Cross-site request forgery (CSRF) vulnerability in editversions.cgi in Bugzilla before 2.22.1 and 2.23.x before 2.23.3 allows user-assisted remote attackers to create, modify, or delete arbitrary bug reports via a crafted URL.

Access Complexity: HIGH
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Oct 23, 2006

CVE-2006-5455

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS