|
Bugzilla LocalConfig Backup File Disclosure Vulnerability
Bugzilla is prone to a vulnerability that may result in backups of the localconfig file being disclosed to remote attackers. The .htaccess files provided with the checksetup.pl script do not adequately protect backups of the localconfig file that may be created by text editors. As a result, it is possible for a remote user to request and gain unauthorized access to these backup files. |
|
 Privacy Statement |
