Unknown vulnerability in (1) duplicates.cgi and (2) buglist.cgi in Bugzilla 2.16.x before 2.16.6, 2.18 before 2.18rc1, when configured to hide products, allows remote attackers to view hidden products.
2004-07-27T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 5.0 (MEDIUM)
AV:N/AC:L/Au:N/C:P/I:N/A:N
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mozilla | bugzilla | 2.4 | No |
| Application | mozilla | bugzilla | 2.6 | No |
| Application | mozilla | bugzilla | 2.8 | No |
| Application | mozilla | bugzilla | 2.10 | No |
| Application | mozilla | bugzilla | 2.12 | No |
| Application | mozilla | bugzilla | 2.14 | No |
| Application | mozilla | bugzilla | 2.14.1 | No |
| Application | mozilla | bugzilla | 2.14.2 | No |
| Application | mozilla | bugzilla | 2.14.3 | No |
| Application | mozilla | bugzilla | 2.14.4 | No |
| Application | mozilla | bugzilla | 2.14.5 | No |
| Application | mozilla | bugzilla | 2.16 | No |
| Application | mozilla | bugzilla | 2.16.1 | No |
| Application | mozilla | bugzilla | 2.16.2 | No |
| Application | mozilla | bugzilla | 2.16.3 | No |
| Application | mozilla | bugzilla | 2.16.4 | No |
| Application | mozilla | bugzilla | 2.16.5 | No |
| Application | mozilla | bugzilla | 2.17 | No |
| Application | mozilla | bugzilla | 2.17.1 | No |
| Application | mozilla | bugzilla | 2.17.3 | No |
| Application | mozilla | bugzilla | 2.17.4 | No |
| Application | mozilla | bugzilla | 2.17.5 | No |
| Application | mozilla | bugzilla | 2.17.6 | No |
| Application | mozilla | bugzilla | 2.17.7 | No |