1
Candidate: CVE-2009-1213
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1213
6
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in
7
Bugzilla 3.2 before 3.2.3, 3.3 before 3.3.4, and earlier versions allows
8
remote attackers to hijack the authentication of arbitrary users for
9
requests that use attachment editing.
18
upstream_bugzilla: released (3.2.4.0-3)
19
dapper_bugzilla: ignored (reached end-of-life)
20
gutsy_bugzilla: needed (reached end-of-life)
21
hardy_bugzilla: ignored (reached end-of-life)
22
intrepid_bugzilla: needed (reached end-of-life)
23
jaunty_bugzilla: ignored (reached end-of-life)
24
karmic_bugzilla: not-affected (3.2.4.0-3)
25
lucid_bugzilla: not-affected (3.2.4.0-3)
26
maverick_bugzilla: not-affected (3.2.4.0-3)
27
natty_bugzilla: not-affected (3.2.4.0-3)
28
oneiric_bugzilla: not-affected (3.2.4.0-3)
29
devel_bugzilla: not-affected (3.2.4.0-3)