diff --git a/mozilla/webtools/bugzilla/.bzrrev b/mozilla/webtools/bugzilla/.bzrrev
index b5e4fe3ee2d..d0df005495a 100644
--- a/mozilla/webtools/bugzilla/.bzrrev
+++ b/mozilla/webtools/bugzilla/.bzrrev
@@ -1 +1 @@
-9372
\ No newline at end of file
+9373
\ No newline at end of file
diff --git a/mozilla/webtools/bugzilla/.gitrev b/mozilla/webtools/bugzilla/.gitrev
index 138c1af1bf3..63333e17393 100644
--- a/mozilla/webtools/bugzilla/.gitrev
+++ b/mozilla/webtools/bugzilla/.gitrev
@@ -1 +1 @@
-a6d74986bd7b96aa41624ed407a46f7f63eadd55
\ No newline at end of file
+06da34e74687de919804c87c8d5e15edbc570522
\ No newline at end of file
diff --git a/mozilla/webtools/bugzilla/Bugzilla/API/1_0/Server.pm b/mozilla/webtools/bugzilla/Bugzilla/API/1_0/Server.pm
index 6136440cf2f..108c25e274c 100644
--- a/mozilla/webtools/bugzilla/Bugzilla/API/1_0/Server.pm
+++ b/mozilla/webtools/bugzilla/Bugzilla/API/1_0/Server.pm
@@ -260,7 +260,8 @@ sub _params_check {
         }
     }
 
-    if ($self->request->method eq 'POST') {
+    if ($self->request->method eq 'POST'
+        || $self->request->method eq 'PUT') {
         # CSRF is possible via XMLHttpRequest when the Content-Type header
         # is not application/json (for example: text/plain or
         # application/x-www-form-urlencoded).