Bugzilla Multiple Cross Site Scripting and Information Disclosure Vulnerabilities
Bugzilla Multiple Vulnerabilities
A security issue and multiple vulnerabilities have been reported in Bugzilla, which can be exploited by malicious people to disclose potentially sensitive information and conduct cross-site scripting and script insertion attacks.
2) An error due to the User.get() method returning different responses can be exploited to disclose the existence of groups.
3) Certain unspecified input when creating tabular reports is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site when the malicious data is being viewed.
4) An error when marking an attachment as obsolete in a restricted bug can be exploited to disclose the description of the attachment via an error message.
5) The application bundles a vulnerable version of swfstore.swf.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, to steal cookie-based authentication credentials, and to obtain sensitive information.