Vulnerability Database

317,094

Total vulnerabilities in the database

CVE-2009-0485

Cross-site request forgery (CSRF) vulnerability in Bugzilla 2.17 to 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote attackers to delete unused flag types via a link or IMG tag to editflagtypes.cgi.

  • Published: Feb 9, 2009
  • Updated: Nov 9, 2025
  • CVE: CVE-2009-0485
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.8
  • AV:N/AC:M/Au:N/C:N/I:P/A:P

CWEs:

Software From Fixed in
mozilla / bugzilla 3.0.4 3.0.4.x
mozilla / bugzilla 3.0-rc1 3.0-rc1.x
mozilla / bugzilla 2.18.6+ 2.18.6+.x
mozilla / bugzilla 3.0.1 3.0.1.x
mozilla / bugzilla 2.17.6 2.17.6.x
mozilla / bugzilla 3.2-rc1 3.2-rc1.x
mozilla / bugzilla 2.18.5 2.18.5.x
mozilla / bugzilla 2.19.3 2.19.3.x
mozilla / bugzilla 2.20-rc2 2.20-rc2.x
mozilla / bugzilla 2.18.6 2.18.6.x
mozilla / bugzilla 2.20-rc1 2.20-rc1.x
mozilla / bugzilla 2.20 2.20.x
mozilla / bugzilla 2.19 2.19.x
mozilla / bugzilla 2.18-rc1 2.18-rc1.x
mozilla / bugzilla 2.20.5 2.20.5.x
mozilla / bugzilla 2.20.6 2.20.6.x
mozilla / bugzilla 2.22.3 2.22.3.x
mozilla / bugzilla 2.22.6 2.22.6.x
mozilla / bugzilla 2.17.4 2.17.4.x
mozilla / bugzilla 2.17.1 2.17.1.x
mozilla / bugzilla 2.22.1 2.22.1.x
mozilla / bugzilla 3.0 3.0.x
mozilla / bugzilla 3.0.6 3.0.6.x
mozilla / bugzilla 2.20.1 2.20.1.x
mozilla / bugzilla 2.22.2 2.22.2.x
mozilla / bugzilla 2.18.1 2.18.1.x
mozilla / bugzilla 2.22-rc1 2.22-rc1.x
mozilla / bugzilla 2.22.5 2.22.5.x
mozilla / bugzilla 2.19.1 2.19.1.x
mozilla / bugzilla 2.17.5 2.17.5.x
mozilla / bugzilla 2.22 2.22.x
mozilla / bugzilla 2.17.3 2.17.3.x
mozilla / bugzilla 3.0.3 3.0.3.x
mozilla / bugzilla 3.2 3.2.x
mozilla / bugzilla 2.20.3 2.20.3.x
mozilla / bugzilla 3.0.2 3.0.2.x
mozilla / bugzilla 2.18.4 2.18.4.x
mozilla / bugzilla 2.18 2.18.x
mozilla / bugzilla 2.18.3 2.18.3.x
mozilla / bugzilla 2.17.7 2.17.7.x
mozilla / bugzilla 2.20.7 2.20.7.x
mozilla / bugzilla 2.20.2 2.20.2.x
mozilla / bugzilla 2.20.4 2.20.4.x
mozilla / bugzilla 2.21.1 2.21.1.x
mozilla / bugzilla 2.18-rc3 2.18-rc3.x
mozilla / bugzilla 2.17 2.17.x
mozilla / bugzilla 2.18.2 2.18.2.x
mozilla / bugzilla 2.18-rc2 2.18-rc2.x
mozilla / bugzilla 3.2-rc2 3.2-rc2.x
mozilla / bugzilla 3.0.5 3.0.5.x
mozilla / bugzilla 2.22.4 2.22.4.x
mozilla / bugzilla 2.21 2.21.x
mozilla / bugzilla 3.3.1 3.3.1.x
mozilla / bugzilla 2.19.2 2.19.2.x