info
discussion
exploit
solution
references
Bugzilla Whinedays SQL Injection Vulnerability
References:
2.18.4, 2.20, and 2.21.1 Security Advisory
(Mozilla)
Bugzilla Bug 312498 - editparams.cgi doesn't check whether 'whinedays' and 'most
(Mozilla)
Bugzilla Homepage
(Mozilla)
XSS in 'maxpatchsize' and 'maxattachmentsize'
(Bugzilla)
Privacy Statement
Copyright 2010, SecurityFocus
