git.ipfire.org Git - thirdparty/bugzilla.git/commit

]> git.ipfire.org Git - thirdparty/bugzilla.git/commit

projects / thirdparty / bugzilla.git / commit

author	justdave%syndicomm.com <>
	Mon, 3 Nov 2003 11:31:30 +0000 (11:31 +0000)
committer	justdave%syndicomm.com <>
	Mon, 3 Nov 2003 11:31:30 +0000 (11:31 +0000)
commit	a4e75a434f1fbbae4b438927ae02958baad7f1b7
tree	74a5ab12bbf20c934af898475a3f6c7303b68013	tree \| snapshot
parent	a30e5f2cf9b04a8a377186ecb3b90b4311d23894	commit \| diff

[SECURITY] Bug 219044: A user with 'editkeywords' privileges (i.e. usually an administrator) can inject arbitrary SQL via the URL used to edit an existing keyword.
Patch by Joel Peshkin <bugreport@peshkin.net>
r= justdave, zach a= justdave

editkeywords.cgi

diff | blob | blame | history

Mirror of https://github.com/bugzilla/bugzilla.git

RSS Atom