Unrated severityNVD Advisory· Published Jun 27, 2001· Updated Apr 16, 2026

CVE-2001-0330

Description

Bugzilla 2.10 allows remote attackers to access sensitive information, including the database username and password, via an HTTP request for the globals.pl file, which is normally returned by the web server without being executed.

Affected products

Mozilla Corporation/Bugzilla4 versions
cpe:2.3:a:mozilla:bugzilla:2.10:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:mozilla:bugzilla:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:mozilla:bugzilla:2.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.atstake.com/research/advisories/2001/a043001-1.txtnvdPatchVendor Advisory
www.securityfocus.com/bid/2671nvdPatchVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/6489nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000