Bugzilla versions 3.1.1 through 3.2.3 and 3.3.1 through 3.3.4 suffer from an unauthorized bug change vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/79053/bugzilla-bypass.txt
Source: https://packetstormsecurity.com/files/79053/Bugzilla-Unauthorized-Bug-Change.html