mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
112 lines
3.7 KiB
JSON
112 lines
3.7 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2007-5038",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "The offer_account_by_email function in User.pm in the WebService for Bugzilla before 3.0.2, and 3.1.x before 3.1.2, does not check the value of the createemailregexp parameter, which allows remote attackers to bypass intended restrictions on account creation."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "FEDORA-2007-2299",
|
|
"refsource": "FEDORA",
|
|
"url": "http://fedoranews.org/updates/FEDORA-2007-229.shtml"
|
|
},
|
|
{
|
|
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=395632",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=395632"
|
|
},
|
|
{
|
|
"name": "ADV-2007-3200",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2007/3200"
|
|
},
|
|
{
|
|
"name": "20070919 Security Advisory for Bugzilla 3.0.1 and 3.1.1",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/480077/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=299981",
|
|
"refsource": "CONFIRM",
|
|
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=299981"
|
|
},
|
|
{
|
|
"name": "26969",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/26969"
|
|
},
|
|
{
|
|
"name": "1018719",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://www.securitytracker.com/id?1018719"
|
|
},
|
|
{
|
|
"name": "26848",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/26848"
|
|
},
|
|
{
|
|
"name": "bugzilla-offeraccount-security-bypass(36692)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36692"
|
|
},
|
|
{
|
|
"name": "25725",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/25725"
|
|
},
|
|
{
|
|
"name": "http://www.bugzilla.org/security/3.0.1/",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://www.bugzilla.org/security/3.0.1/"
|
|
}
|
|
]
|
|
}
|
|
} |