Glob

**Name of the Vulnerable Software and Affected Versions** Bugzilla versions 2.16.x through 2.16.5 Bugzilla versions 2.18 before 2.18rc1 **Description** A SQL injection issue allows remote attackers with privileges to grant membership to any group to execute arbitrary SQL. **Recommendations** For Bugzilla versions 2.16.x through 2.16.5, update to version 2.16.6 or later. For Bugzilla versions 2.18 before 2.18rc1, update to version 2.18rc1 or later.