Secunia Security Advisory – A weakness and two vulnerabilities have been reported in Bugzilla, which can be exploited by malicious people to disclose potentially sensitive information and by malicious users and malicious people to conduct SQL injection attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/81248/sa36718.txt
Source: https://packetstormsecurity.com/files/81248/Secunia-Security-Advisory-36718.html